import logging
from urllib import urlencode
from urllib2 import urlopen, URLError
from hashlib import md5
from datetime import datetime
from django.shortcuts import render
from django.contrib.gis.utils import GeoIP
from django.core.files import File as DjangoFile
from django.utils.translation import ugettext as _
from djangorestframework import status
from djangorestframework.response import Response, ErrorResponse
from djangorestframework.views import View
from board import models
from board.shortcuts import add_sidebar
from import (
    make_tripcode, parse_user_agent,
    get_key, handle_uploaded_file
from modpanel.views import is_mod
class ValidationError(Exception):
        The error raised when content created by user is invalid.
        NOTE: django.forms.ValidationError is unusable here
              because we need to serialize the exception.
def api(request):
    """Render the page that contains some API usage examples."""
    return render(request, "api.html", add_sidebar())
def adapt_captcha(request):
        Disable captcha if ANY of these conditions are met:
            - user has entered three valid captchas in a row;
            - user is logged in.
        Returns the post form which MAY have a captcha field in it.
    correct = request.session.get("valid_captchas", 0)
    no_captcha = request.session.get("no_captcha", False) \
              or request.user.is_authenticated()
    model = models.PostFormNoCaptcha if no_captcha else models.PostForm
    form = model(request.POST, request.FILES)
    if not form.is_valid():
        raise ValidationError(dict(form.errors))
    if no_captcha:
        correct -= 1
        request.session["no_captcha"] = bool(correct)
        correct += 1
        if correct == 3:
            request.session["no_captcha"] = True
            correct = 20
    request.session["valid_captchas"] = correct
    return form
def create_post(request):
        Create a post from the form data the user has sent.
        This post will also begin a new thread if there were no
        "thread" field in the request.
    user = request.user.is_authenticated() and request.user
    files = request.FILES.get("file", [])
    thread = request.POST.get("thread")
    section = request.POST["section"] if not thread else ""
    form = adapt_captcha(request)
    post =
    return finish_post(
        post, user, thread, files, section,
        request.META.get("REMOTE_ADDR", ""),
def finish_post(post, user, thread, files, section, ip, useragent, feed=None):
    # Set some common attributes.
    post.ip = ip =
    post.password = get_key(post.password)
    post.is_op_post = not thread
    if models.Wordfilter.objects.scan(post.message):
        raise ValidationError(_("Your post contains blacklisted word."))
    if not thread:
        section = models.Section.objects.get(slug=section)
        thread_o = models.Thread(section=section,
        thread_o = models.Thread.objects.get(id=thread)
        section = thread_o.section
        if thread_o.is_closed and not user:
            raise ValidationError(
                _("This thread is closed, you cannot post to it.")
    section_is_feed = section.type == 3
    if files:
        allowed = section.allowed_filetypes()
        extension = allowed.get(files.content_type)
        if not extension:
            raise InvalidFileError(_("Invalid file type"))
        lim = section.filesize_limit
        if files.size > lim > 0:
            raise InvalidFileError(_("Too big file"))
        m = md5()
        map(m.update, files.chunks())
        # TODO: Check if this file already exists.
        #       (Is this really needed at all?)
        #if models.File.objects.filter(hash=m.hexdigest()).count() > 0:
        #    raise InvalidFileError(_("This file already exists"))
        filetype = models.FileType.objects.filter(extension=extension)[0]
        post.file = handle_uploaded_file(
      , type=filetype, hash=m.hexdigest(),
                file=DjangoFile(files), image_height=0, image_width=0
        if not post.message:
            raise ValidationError(
                _("Enter post message or attach a file to your post")
        elif not thread:
            if section.force_files:
                raise ValidationError(
                    _("You need to upload file to create new thread.")
            elif section_is_feed and not user:
                raise NotAuthenticatedError(
                        "Authentication required to "
                        "create threads in this section"
    # Bump the thread.
    if ( != "sage"
    and thread and thread_o.posts().count() < section.bumplimit):
        thread_o.bump =
    # Parse the signature.
    author, sign = (post.poster.split("!", 1) + [""])[:2]
    if sign == "OP" and thread and post.password == thread_o.op_post.password:
        post.tripcode = "!OP"
    if sign == "name" and user:
        if user.is_superuser:
            post.tripcode = "!{}".format(user.username)
            post.tripcode = "!Mod"
    # Parse the tripcode.
    author, tripcode = (author.split("#", 1) + [""])[:2]
    if tripcode:
        post.tripcode = make_tripcode(tripcode)
    post.poster = author
    # Force-set the author name on some boards.
    if not post.poster or section.anonymity:
        post.poster = section.default_name
    if == "mvtn".encode("rot13"):  # easter egg o/
        s = u"\u5350"
        post.poster = = post.topic = s * 10
        post.message = (s + u" ") * 50
    if section.type == 4:
        # 4 == /int/ - International
        # Assign the country code to this post. = {
            "country_code": models.GeoIP().country(post.ip)["country_code"]
    elif section.type == 5:
        # 5 == /bugs/ - Bugtracker
        # Display the user's browser name derived from HTTP User-Agent.
        parsed = parse_user_agent(useragent)
        browser = parsed.get("browser", {"name": "Unknown", "version": ""})
        platform = parsed.get("os", {"name": "Unknown"})
        browser["os_name"] = platform["name"]
        browser["os_version"] = parsed.get("flavor", {}).get("version", "")
        browser["raw"] = useragent = {"useragent": browser}
    if not thread:
        post.thread = thread_o = section.pid_incr()
    if feed is not None:
        thread_id = int(thread or
    return post
def mod_delete_post(request, post):
    if request.GET.get("ban_ip"):
        reason = request.GET.get("ban_reason")
        if not reason:
            raise ErrorResponse(status.BAD_REQUEST,
                {"detail": _("You need to enter ban reason")}
        ip = DeniedIP(ip=post.ip, reason=r, by=request.user)
    if request.GET.get("delete_all"):
        posts = post.section().posts().filter(ip=post.ip)
        op = posts.filter(is_op_post=True).values("pid", "thread")
        t = models.Thread.objects.filter(id__in=[i["thread"] for i in op])
        for p in posts:
class ThreadInstanceView(View):
    def get(self, request, *args, **kwargs):
        slug = kwargs.get("section__slug")
            if not slug:
                instance = models.Thread.objects.get(**kwargs)
                op_post = models.Post.objects.get(pid=kwargs["id"],
                instance = op_post.thread
        except (Post.DoesNotExist, self.model.DoesNotExist):
            raise ErrorResponse(status.NOT_FOUND)
        res = {f: getattr(instance, f) for f in self.fields}
        # remove nested fields
        fields = [f for f in list(self.resource.fields)
            if isinstance(f, str) and f != "files"]
        res["posts"] = instance.posts().values(*fields)
        return res
class PostListOrCreateView(View):
    def get(self, request, *args, **kwargs):
        """Returns list of posts. If ?html option is specified, method
        will return only posts html without any other fields.
        TODO: implement pagination.
        qs = self.resource.model.objects.filter(**kwargs).reverse()[:20]
        if request.GET.get("html"):
            return qs.values("html")
        return qs
    def post(self, request, *args, **kwargs):
        """Checks post for errors and returns new post instance."""
            instance = create_post(request)
        except ValidationError as e:
            raise ErrorResponse(status.BAD_REQUEST, {"detail": e.message})
        # django sends date with microseconds. We don't want it. ="%Y-%m-%d %H:%M:%S")
        url = "{}"
        data = urlencode({"html": instance.html.encode("utf-8")})
            urlopen(url.format(, data)
        except URLError:
            logging.warning("Can't refresh messages in pubsub.")
        return Response(status.CREATED, instance)
class PostInstanceView(View):
    """A read/delete resource for Post."""
    def get(self, request, *args, **kwargs):
        """Gets post data. If ?html option is specified, method will return
        only post html without any other fields.
            post = self.model.objects.get(**kwargs)
            if request.GET.get("html"):
                return {"html": post.html}
            return post
        except self.model.DoesNotExist:
            raise ErrorResponse(status.NOT_FOUND)
    def delete(self, request, *args, **kwargs):
        """Deletes post."""
            post = self.model.objects.get(id=kwargs["id"])
        except self.model.DoesNotExist:
            raise ErrorResponse(status.NOT_FOUND)
        key = get_key(request.GET["password"])
        if post.password == key:
        elif is_mod(request, post.section_slug()):
            mod_delete_post(request, post)
            raise ErrorResponse(status.FORBIDDEN, content={
                "detail": u"{0}{1}. {2}".format(
                    _("Error on deleting post #"),,
                    _("Password mismatch")
        return Response(status.NO_CONTENT)
class FileInstanceView(View):
    def delete(self, request, *args, **kwargs):
        """Deletes attachment."""
            file = self.model.objects.get(**kwargs)
        except self.model.DoesNotExist:
            raise ErrorResponse(status.NOT_FOUND)
        key = get_key(request.GET["password"])
        if == key:
        elif is_mod(request,
            raise ErrorResponse(status.FORBIDDEN, content={
                "detail": u"{}{}. {}".format(
                    _("Error on deleting file #"),,
                    _("Password mismatch")
        return Response(status.NO_CONTENT)
class RandomImageView(View):
    def get(self, request, *args, **kwargs):
        count = kwargs.get("count", 3)
        return self.model.objects.random_images()[:count]
class StorageRootView(View):
    storage_name = ""
    default = {}
    def get_data(self, request):
        return request.session[self.storage_name]
    def set_data(self, request, value):
        request.session[self.storage_name] = value
    def get(self, request, auth):
        return Response(status.OK, self.get_data(request))
    def delete(self, request, auth):
        """Clears whole storage."""
        self.set_data(request, self.default)
        return Response(status.NO_CONTENT)
class StorageView(StorageRootView):
    """Base storage read/delete View."""
    def get(self, request, key):
        raise ErrorResponse(status.NOT_IMPLEMENTED)
class StorageSetRootView(StorageRootView):
    """Storage create/list/flush View, that uses set to store data."""
    default = set()
    def post(self, request):
        data = self.get_data(request)
            value = int(self.CONTENT["value"])
        except (KeyError, TypeError):
            raise ErrorResponse(status.BAD_REQUEST)
        request.session.modified = True
        return Response(status.CREATED, data)
class StorageSetView(StorageView):
    """Storage read/delete View, that uses set to store data."""
    default = set()
    def delete(self, request, key):
        data = self.get_data(request)
        key = int(key)
        if key in data:
            request.session.modified = True
        return Response(status.NO_CONTENT)
class StorageDictRootView(StorageRootView):
    """Storage create/list/flush View, that uses dict to store data."""
    default = {}
    def post(self, request):
        data = self.get_data(request)
            key = self.CONTENT["key"]
            value = self.CONTENT["value"]
        except KeyError:
            raise ErrorResponse(status.BAD_REQUEST)
        data[key] = value
        request.session.modified = True
        return Response(status.CREATED, data)
class StorageDictView(StorageView):
    """Storage read/delete View, that uses dict to store data."""
    default = {}
    def get(self, request, key):
        data = self.get_data(request)
        return Response(status.OK, data.get(key))
    def delete(self, request, key):
        data = self.get_data(request)
        if key in data:
            del data[key]
        request.session.modified = True
        return Response(status.NO_CONTENT)
class SettingRootView(StorageDictRootView):
    storage_name = "settings"
class SettingView(StorageDictView):
    storage_name = "settings"
class FeedRootView(StorageSetRootView):
    storage_name = "feed"
class FeedView(StorageSetView):
    storage_name = "feed"
class HideRootView(StorageSetRootView):
    storage_name = "hidden"
class HideView(StorageSetView):
    storage_name = "hidden"