Compare commits
	
		
			1 Commits
		
	
	
		
			2773ba5243
			...
			with-docke
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| ca23415288 | 
| @@ -1,8 +0,0 @@ | ||||
| logs/ | ||||
| nginx.conf.compiled | ||||
| .vscode/ | ||||
| .local/ | ||||
| data/db/* | ||||
| secrets | ||||
| secrets/.touched* | ||||
| sass | ||||
							
								
								
									
										11
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										11
									
								
								.gitignore
									
									
									
									
										vendored
									
									
								
							| @@ -1,9 +1,10 @@ | ||||
| logs/ | ||||
| nginx.conf.compiled | ||||
| db.*.sqlite | ||||
| .vscode/ | ||||
| .local/ | ||||
| data/db/* | ||||
| secrets/secrets.lua | ||||
| secrets/.touched* | ||||
| data/static/avatars/* | ||||
| !data/static/avatars/default.webp | ||||
| static/avatars/* | ||||
| !static/avatars/default.webp | ||||
| secrets.lua | ||||
|  | ||||
| .first_launch.* | ||||
|   | ||||
							
								
								
									
										16
									
								
								Dockerfile
									
									
									
									
									
								
							
							
						
						
									
										16
									
								
								Dockerfile
									
									
									
									
									
								
							| @@ -1,16 +0,0 @@ | ||||
| # HOW TO: | ||||
| # | ||||
| # docker compose up | ||||
| # | ||||
| # it exposes the data/ and secrets/ volumes in app root | ||||
| # | ||||
| FROM openresty/openresty:alpine-fat | ||||
|  | ||||
| RUN apk add --no-cache git make gcc g++ musl-dev libffi-dev openssl-dev sqlite-dev libsodium libsodium-dev imagemagick-dev openssl | ||||
| WORKDIR /app | ||||
| COPY . . | ||||
| RUN eval "$(luarocks --lua-version=5.1 path)" | ||||
| RUN luarocks --lua-version=5.1 build --only-deps | ||||
| EXPOSE 8080 | ||||
| RUN chmod +x /app/start.sh | ||||
| ENTRYPOINT ["/app/start.sh", "production"] | ||||
							
								
								
									
										39
									
								
								README.md
									
									
									
									
									
								
							
							
						
						
									
										39
									
								
								README.md
									
									
									
									
									
								
							| @@ -6,43 +6,34 @@ Released under [CNPLv7+](https://thufie.lain.haus/NPL.html). | ||||
| Please read the [full terms](./LICENSE.md) for proper wording. | ||||
|  | ||||
| # installing & first time setup | ||||
| ## docker | ||||
| ```bash | ||||
| $ docker compose up | ||||
| ``` | ||||
|  | ||||
| - opens port 8080 | ||||
| - exposes `data/db` and `data/avatars` as volumes for data backup and persistence | ||||
| - exposes `secrets/` as a volume so that the script won't try to perform first time setup again | ||||
|  | ||||
| ## manual | ||||
| 1. install: | ||||
|    - OpenResty. instructions for linux can be found [here](https://openresty.org/en/linux-packages.html) | ||||
|    - LuaJIT and Lua 5.1 (usually called `lua5.1` in package managers) | ||||
|    - openssl (-dev) | ||||
|    - sqlite (-dev) | ||||
|    - libsodium (-dev) | ||||
|    - imagemagick (-dev) | ||||
|    - [LuaRocks](https://luarocks.org) (either through the guide's instructions or your package manager, whichever is newer) | ||||
| 2. add luarocks search dirs to path: | ||||
| 1. first, install OpenResty. instructions for linux can be found [here](https://openresty.org/en/linux-packages.html). | ||||
| 2. then, install LuaJIT and Lua 5.1 (usually called `lua5.1` in package managers) | ||||
| 3. then, install [LuaRocks](https://luarocks.org) (prefer your package manager instead of a local install recommended by the guide) | ||||
| 4. add luarocks search dirs to path: | ||||
|  | ||||
| ```bash | ||||
|   # in .bashrc (or other shell equivalent) | ||||
|   eval "$(luarocks --lua-version 5.1 path)" | ||||
| ``` | ||||
| 3. clone repo | ||||
| 4. install the lua dependencies: | ||||
| 5. clone repo | ||||
| 6. install the dependencies: | ||||
|  | ||||
| ```bash | ||||
| $ luarocks --local --lua-version 5.1 build --only-deps | ||||
| ``` | ||||
| 5. run: | ||||
| 7. create a file named `secrets.lua` in the project directory.   | ||||
| use the `secrets.lua.example` file as reference, and generate a cryptographically secure random key, for example, with: | ||||
|  | ||||
| ```bash | ||||
| $ start.sh production # or 'development' or empty string | ||||
| $ openssl rand -hex 32 | ||||
| ``` | ||||
| 8. run: | ||||
|  | ||||
| ```bash | ||||
| $ start.sh production | ||||
| ``` | ||||
| the script will perform some necessary first time setup (and create a hidden file in the folder to ensure it won't do so again). it will create an administrator account and print the credentials to the console; **this will only happen once**. make sure you save them somewhere. the administrator account is the only one that can promote other users to moderator.   | ||||
| (note the `production` argument. if called with no arguments, `start.sh` will run in a development environment, which uses a separate database and shows more debug information.) | ||||
| (note the `production` argument. if called with no arguments, `start.sh` will run in a development environment, which uses a separate database.) | ||||
|  | ||||
| this app is made with the assumption that it is being reverse-proxied. as such, you may want to change the port to something other than the default `8080`. you can do that in [`config.lua`]([./config.lua]). | ||||
|  | ||||
|   | ||||
							
								
								
									
										6
									
								
								app.lua
									
									
									
									
									
								
							
							
						
						
									
										6
									
								
								app.lua
									
									
									
									
									
								
							| @@ -13,8 +13,6 @@ app.layout = require "views.base" | ||||
|  | ||||
| local function inject_constants(req) | ||||
|   req.constants = constants | ||||
|   math.randomseed(os.time()) | ||||
|   req.__cachebust = math.random(99999) | ||||
| end | ||||
|  | ||||
| local function inject_methods(req) | ||||
| @@ -23,9 +21,6 @@ local function inject_methods(req) | ||||
|     return util.ntob(v) | ||||
|   end | ||||
|   req.PermissionLevelString = constants.PermissionLevelString | ||||
|   req.infobox_message = function (_, s) | ||||
|     return util.infobox_message(s) | ||||
|   end | ||||
|  | ||||
|   util.pop_infobox(req) | ||||
| end | ||||
| @@ -37,7 +32,6 @@ app:include("apps.users", {path = "/user"}) | ||||
| app:include("apps.topics", {path = "/topics"}) | ||||
| app:include("apps.threads", {path = "/threads"}) | ||||
| app:include("apps.mod", {path = "/mod"}) | ||||
| app:include("apps.post", {path = "/post"}) | ||||
|  | ||||
| app:get("/", function(self) | ||||
|   return {redirect_to = self:url_for("all_topics")} | ||||
|   | ||||
							
								
								
									
										29
									
								
								apps/mod.lua
									
									
									
									
									
								
							
							
						
						
									
										29
									
								
								apps/mod.lua
									
									
									
									
									
								
							| @@ -1,46 +1,23 @@ | ||||
| local app = require("lapis").Application() | ||||
|  | ||||
| local db = require("lapis.db") | ||||
|  | ||||
| local util = require("util") | ||||
|  | ||||
| local models = require("models") | ||||
| local Users = models.Users | ||||
|  | ||||
| -- everything here requires a logged in moderator | ||||
| app:before_filter(function(self) | ||||
| app:get("user_list", "/list", function(self) | ||||
|   self.me = util.get_logged_in_user(self) | ||||
|   if not self.me then | ||||
|     self:write{redirect_to = self:url_for("all_topics")} | ||||
|     return | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
|    | ||||
|   if not self.me:is_mod() then | ||||
|     self:write{redirect_to = self:url_for("all_topics")} | ||||
|     return | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
| end) | ||||
|    | ||||
| app:get("user_list", "/list", function(self) | ||||
|   self.users = Users:select("") | ||||
|    | ||||
|   return {render = "mod.user-list"} | ||||
| end) | ||||
|  | ||||
| app:get("sort_topics", "/sort-topics", function(self) | ||||
|   self.topics = db.query("SELECT * FROM topics ORDER BY sort_order ASC") | ||||
|   self.page_title = "sorting topics" | ||||
|   return {render = "mod.sort-topics"} | ||||
| end) | ||||
|  | ||||
| app:post("sort_topics", "/sort-topics", function(self) | ||||
|   local updates = self.params | ||||
|   db.query("BEGIN") | ||||
|   for topic_id, new_order in pairs(updates) do | ||||
|     db.update("topics", {sort_order = new_order}, {id = topic_id}) | ||||
|   end | ||||
|   db.query("COMMIT") | ||||
|   return {redirect_to = self:url_for("sort_topics")} | ||||
| end) | ||||
|  | ||||
| return app | ||||
|   | ||||
| @@ -1,75 +0,0 @@ | ||||
| local app = require("lapis").Application() | ||||
|  | ||||
| local db = require("lapis.db") | ||||
| local constants = require("constants") | ||||
|  | ||||
| local util = require("util") | ||||
|  | ||||
| local models = require("models") | ||||
| local Posts = models.Posts | ||||
| local Threads = models.Threads | ||||
|  | ||||
|  | ||||
| app:get("single_post", "/:post_id", function(self) | ||||
|   local query = constants.FULL_POSTS_QUERY .. "WHERE posts.id = ?" | ||||
|   local p = db.query(query, self.params.post_id) | ||||
|   if p then | ||||
|     self.post = p[1] | ||||
|     self.thread = Threads:find({id = self.post.thread_id}) | ||||
|     self.page_title = self.post.username .. "'s post in " .. self.thread.title | ||||
|   end | ||||
|  | ||||
|   return {render = "post.single-post"} | ||||
| end) | ||||
|  | ||||
| app:get("edit_post", "/:post_id/edit", function(self) | ||||
|   local user = util.get_logged_in_user(self) | ||||
|   if not user then | ||||
|     return {redirect_to = self:url_for"all_topics"} | ||||
|   end | ||||
|    | ||||
|   local editing_query = constants.FULL_POSTS_QUERY .. "WHERE posts.id = ?" | ||||
|   local p = db.query(editing_query, self.params.post_id) | ||||
|   if not p then | ||||
|     return {redirect_to = self:url_for"all_topics"} | ||||
|   end | ||||
|   if p[1].user_id ~= user.id then | ||||
|     return {redirect_to = self:url_for"all_topics"} | ||||
|   end | ||||
|   self.me = user | ||||
|   self.editing_post = p[1] | ||||
|   self.thread = Threads:find({id = self.editing_post.thread_id}) | ||||
|    | ||||
|   local thread_predicate = constants.FULL_POSTS_QUERY .. "WHERE posts.thread_id = ?\n" | ||||
|    | ||||
|   local context_prev_query = thread_predicate .. "AND posts.created_at < ? ORDER BY posts.created_at DESC LIMIT 2" | ||||
|   local context_next_query = thread_predicate .. "AND posts.created_at > ? ORDER BY posts.created_at ASC LIMIT 2" | ||||
|    | ||||
|   self.prev_context = db.query(context_prev_query, self.thread.id, self.editing_post.created_at) | ||||
|   self.next_context = db.query(context_next_query, self.thread.id, self.editing_post.created_at) | ||||
|    | ||||
|   return {render = "post.edit-post"} | ||||
| end) | ||||
|  | ||||
| app:post("edit_post", "/:post_id/edit", function(self) | ||||
|   local user = util.get_logged_in_user(self) | ||||
|   if not user then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
|    | ||||
|   local post = Posts:find({id = self.params.post_id}) | ||||
|   if not post then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
|    | ||||
|   if post.user_id ~= user.id then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
|    | ||||
|   util.update_post(post, self.params.new_content) | ||||
|   local thread = Threads:find({id = post.thread_id}) | ||||
|   local link = self:url_for("thread", {slug = thread.slug}, {after = post.id}) .. "#post-" .. post.id | ||||
|   return {redirect_to = link} | ||||
| end) | ||||
|  | ||||
| return app | ||||
| @@ -1,6 +1,5 @@ | ||||
| local app = require("lapis").Application() | ||||
| local lapis_util = require("lapis.util") | ||||
| local constants  = require("constants") | ||||
|  | ||||
| local db = require("lapis.db") | ||||
| local util = require("util") | ||||
| @@ -36,10 +35,7 @@ app:post("thread_create", "/create", function(self) | ||||
|   end | ||||
|   local topic = Topics:find(self.params.topic_id) | ||||
|   if not topic then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|   end | ||||
|   if util.is_topic_locked(topic) and not user:is_mod() then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|     return {redirect_to = self:url_for("topics")} | ||||
|   end | ||||
|  | ||||
|   local title = lapis_util.trim(self.params.title) | ||||
| @@ -58,7 +54,7 @@ app:post("thread_create", "/create", function(self) | ||||
|  | ||||
|   local post = util.create_post(thread.id, user.id, post_content) | ||||
|   if not post then | ||||
|     return {redirect_to = self:url_for("all_topics")} | ||||
|     return {redirect_to = self:url_for("topics")} | ||||
|   end | ||||
|    | ||||
|   return {redirect_to = self:url_for("thread", {slug = slug})} | ||||
| @@ -90,9 +86,23 @@ app:get("thread", "/:slug", function(self) | ||||
|   end | ||||
|  | ||||
|   -- self.page = math.max(1, math.min(self.page, self.pages)) | ||||
|   local query = (constants.FULL_POSTS_QUERY .. | ||||
|     "WHERE posts.thread_id = ? ORDER BY posts.created_at ASC LIMIT ? OFFSET ?") | ||||
|   local posts = db.query(query, thread.id, POSTS_PER_PAGE, (self.page - 1) * POSTS_PER_PAGE) | ||||
|   local posts = db.query([[ | ||||
|     SELECT | ||||
|       posts.id, posts.created_at, post_history.content, post_history.edited_at, users.username, users.status, avatars.file_path AS avatar_path | ||||
|     FROM | ||||
|       posts | ||||
|     JOIN | ||||
|       post_history ON posts.current_revision_id = post_history.id | ||||
|     JOIN | ||||
|       users ON posts.user_id = users.id | ||||
|     LEFT JOIN | ||||
|       avatars ON users.avatar_id = avatars.id | ||||
|     WHERE | ||||
|       posts.thread_id = ? | ||||
|     ORDER BY | ||||
|       posts.created_at ASC | ||||
|     LIMIT ? OFFSET ? | ||||
|   ]], thread.id, POSTS_PER_PAGE, (self.page - 1) * POSTS_PER_PAGE) | ||||
|   self.topic = Topics:find(thread.topic_id) | ||||
|   self.me = util.get_logged_in_user_or_transient(self) | ||||
|   self.posts = posts | ||||
|   | ||||
| @@ -5,7 +5,7 @@ local constants = require("constants") | ||||
|  | ||||
| local util = require("util") | ||||
|  | ||||
| local auth = require("lib.auth") | ||||
| local bcrypt = require("bcrypt") | ||||
| local rand = require("openssl.rand") | ||||
|  | ||||
| local models = require("models") | ||||
| @@ -14,7 +14,7 @@ local Sessions = models.Sessions | ||||
| local Avatars = models.Avatars | ||||
|  | ||||
| local function authenticate_user(user, password) | ||||
|   return auth.verify(password, user.password_hash) | ||||
|   return bcrypt.verify(password, user.password_hash) | ||||
| end | ||||
|  | ||||
| local function create_session_key() | ||||
| @@ -321,7 +321,7 @@ app:post("user_signup", "/signup", function(self) | ||||
|  | ||||
|   local new_user = Users:create({ | ||||
|     username = username, | ||||
|     password_hash = auth.digest(password), | ||||
|     password_hash = bcrypt.digest(password, constants.BCRYPT_ROUNDS), | ||||
|     permission = constants.PermissionLevel.GUEST, | ||||
|   }) | ||||
|  | ||||
|   | ||||
| @@ -1,5 +1,5 @@ | ||||
| local config = require("lapis.config") | ||||
| local secrets = require("secrets.secrets") | ||||
| local secrets = require("secrets") | ||||
|  | ||||
| config({"development", "production"}, { | ||||
|   port = 8080, | ||||
| @@ -7,7 +7,7 @@ config({"development", "production"}, { | ||||
|   code_cache = "off", | ||||
|   num_workers = "1", | ||||
|   sqlite = { | ||||
|     database = "data/db/db.dev.sqlite" | ||||
|     database = "db.dev.sqlite" | ||||
|   }, | ||||
|   secret = "SUPER SECRET", | ||||
|   session_name = "porom_session", | ||||
| @@ -20,7 +20,7 @@ config("production", { | ||||
|   }, | ||||
|   secret = secrets.key, | ||||
|   sqlite = { | ||||
|     database = "data/db/db.prod.sqlite" | ||||
|     database = "db.prod.sqlite" | ||||
|   }, | ||||
|   session_name = "porom_session_s" | ||||
| }) | ||||
|   | ||||
| @@ -8,19 +8,6 @@ Constants.PermissionLevel = { | ||||
|   ADMIN = 4, | ||||
| } | ||||
|  | ||||
| Constants.FULL_POSTS_QUERY = [[ | ||||
|   SELECT | ||||
|     posts.id, posts.created_at, post_history.content, post_history.edited_at, users.username, users.status, avatars.file_path AS avatar_path, posts.thread_id, users.id AS user_id, post_history.original_markup | ||||
|   FROM | ||||
|     posts | ||||
|   JOIN | ||||
|     post_history ON posts.current_revision_id = post_history.id | ||||
|   JOIN | ||||
|     users ON posts.user_id = users.id | ||||
|   LEFT JOIN | ||||
|     avatars ON users.avatar_id = avatars.id | ||||
| ]] | ||||
|  | ||||
| Constants.PermissionLevelString = { | ||||
|   [Constants.PermissionLevel.GUEST] = "Guest", | ||||
|   [Constants.PermissionLevel.USER] = "User", | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| local auth = require("lib.auth") | ||||
| local bcrypt = require("bcrypt") | ||||
| local models = require("models") | ||||
| local constants = require("constants") | ||||
|  | ||||
| @@ -23,14 +23,13 @@ local function create_admin() | ||||
|     return | ||||
|   end | ||||
|  | ||||
|   math.randomseed(os.time()) | ||||
|   local password = "" | ||||
|   for _ = 1, 16 do | ||||
|     local randi = math.random(#alphabet) | ||||
|     password = password .. alphabet:sub(randi, randi) | ||||
|   end | ||||
|  | ||||
|   local hash = auth.digest(password) | ||||
|   local hash = bcrypt.digest(password, constants.BCRYPT_ROUNDS) | ||||
|  | ||||
|   models.Users:create({ | ||||
|     username = username, | ||||
|   | ||||
							
								
								
									
										13
									
								
								docker-compose.yaml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										13
									
								
								docker-compose.yaml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,13 @@ | ||||
| # Generate a random secret key | ||||
| # export PROD_SECRET_KEY=$(openssl rand -hex 32) | ||||
| # Start the container | ||||
| # docker-compose up | ||||
| version: "3" | ||||
| services: | ||||
|   porom: | ||||
|     build:  | ||||
|       context: . | ||||
|       args: | ||||
|         - PROD_SECRET_KEY=${PROD_SECRET_KEY} | ||||
|     ports:  | ||||
|       - "8080:8080" | ||||
| @@ -1,10 +0,0 @@ | ||||
| services: | ||||
|   porom: | ||||
|     build: | ||||
|       context: . | ||||
|     ports: | ||||
|       - "8080:8080" | ||||
|     volumes: | ||||
|       - ./data/static:/app/data/static | ||||
|       - ./data/db:/app/data/db | ||||
|       - ./secrets:/app/secrets | ||||
							
								
								
									
										36
									
								
								dockerfile
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										36
									
								
								dockerfile
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,36 @@ | ||||
| # HOW TO: | ||||
| # | ||||
| # Generate a random secret key & build the Docker image | ||||
| # ```sh | ||||
| # SECRET_KEY=$(openssl rand -hex 32) docker build --build-arg PROD_SECRET_KEY="$SECRET_KEY" -t porom:latest . | ||||
| # ``` | ||||
| # | ||||
| # Then run the container | ||||
| # ```sh | ||||
| # docker run -d -p 8080:8080 --name porom porom:latest | ||||
| # ``` | ||||
| # | ||||
| FROM openresty/openresty:alpine-fat | ||||
| COPY ./nginx.conf /usr/local/openresty/nginx/conf/nginx.conf | ||||
| COPY . /usr/local/openresty/nginx/html | ||||
| WORKDIR /usr/local/openresty/nginx/html | ||||
| RUN apk add --no-cache \  | ||||
|     make \ | ||||
|     git \ | ||||
|     make \ | ||||
|     gcc \ | ||||
|     g++ \ | ||||
|     musl-dev \ | ||||
|     libffi-dev \ | ||||
|     openssl-dev \ | ||||
|     sqlite-dev \ | ||||
|     imagemagick-dev \ | ||||
|     lua5.1 \ | ||||
|     lua5.1-dev | ||||
| RUN eval "$(luarocks --lua-version 5.1 path)" | ||||
| RUN luarocks --lua-version 5.1 build --only-deps | ||||
| ARG PROD_SECRET_KEY | ||||
| RUN echo "return { key = \"${PROD_SECRET_KEY}\",}" > /usr/local/openresty/nginx/html/secrets.lua | ||||
| EXPOSE 8080 | ||||
| RUN chmod +x /usr/local/openresty/nginx/html/start.sh | ||||
| ENTRYPOINT ["/usr/local/openresty/nginx/html/start.sh", "production"] | ||||
| @@ -1,7 +0,0 @@ | ||||
| for (let button of document.querySelectorAll(".copy-code")) { | ||||
|   button.addEventListener("click", async () => { | ||||
|     await navigator.clipboard.writeText(button.value) | ||||
|     button.textContent = "Copied!" | ||||
|     setTimeout(() => {button.textContent = "Copy"}, 1000.0) | ||||
|   }) | ||||
| } | ||||
| @@ -1,54 +0,0 @@ | ||||
| { | ||||
|   let ta = document.getElementById("post_content"); | ||||
|   const buttonBold = document.getElementById("post-editor-bold"); | ||||
|   const buttonItalics = document.getElementById("post-editor-italics"); | ||||
|   const buttonStrike = document.getElementById("post-editor-strike"); | ||||
|   const buttonCode = document.getElementById("post-editor-code"); | ||||
|  | ||||
|   function insertTag(tagStart, newline = false) { | ||||
|     const tagEnd = tagStart; | ||||
|     const tagInsertStart = `[${tagStart}]${newline ? "\n" : ""}`; | ||||
|     const tagInsertEnd = `${newline ? "\n" : ""}[/${tagEnd}]`; | ||||
|     const hasSelection = ta.selectionStart !== ta.selectionEnd; | ||||
|     const text = ta.value; | ||||
|     if (hasSelection) { | ||||
|       const realStart = Math.min(ta.selectionStart, ta.selectionEnd); | ||||
|       const realEnd = Math.max(ta.selectionStart, ta.selectionEnd); | ||||
|       const selectionLength = realEnd - realStart; | ||||
|        | ||||
|       const strStart = text.slice(0, realStart); | ||||
|       const strEnd = text.substring(realEnd); | ||||
|       const frag = `${tagInsertStart}${text.slice(realStart, realEnd)}${tagInsertEnd}`; | ||||
|       const reconst = `${strStart}${frag}${strEnd}`; | ||||
|       ta.value = reconst; | ||||
|       ta.setSelectionRange(realStart + tagInsertStart.length, realStart + tagInsertStart.length + selectionLength); | ||||
|       ta.focus() | ||||
|     } else { | ||||
|       const cursor = ta.selectionStart; | ||||
|       const strStart = text.slice(0, cursor); | ||||
|       const strEnd = text.substr(cursor); | ||||
|       const newCursor = strStart.length + tagInsertStart.length; | ||||
|       const reconst = `${strStart}${tagInsertStart}${tagInsertEnd}${strEnd}`; | ||||
|       ta.value = reconst; | ||||
|       ta.setSelectionRange(newCursor, newCursor); | ||||
|       ta.focus() | ||||
|     } | ||||
|   } | ||||
|  | ||||
|   buttonBold.addEventListener("click", (e) => { | ||||
|     e.preventDefault(); | ||||
|     insertTag("b") | ||||
|   }) | ||||
|   buttonItalics.addEventListener("click", (e) => { | ||||
|     e.preventDefault(); | ||||
|     insertTag("i") | ||||
|   }) | ||||
|   buttonStrike.addEventListener("click", (e) => { | ||||
|     e.preventDefault(); | ||||
|     insertTag("s") | ||||
|   }) | ||||
|   buttonCode.addEventListener("click", (e) => { | ||||
|     e.preventDefault(); | ||||
|     insertTag("code", true) | ||||
|   }) | ||||
| } | ||||
| @@ -1,45 +0,0 @@ | ||||
| // https://codepen.io/crouchingtigerhiddenadam/pen/qKXgap | ||||
| let selected = null; | ||||
| let container = document.getElementById("topics-container") | ||||
|  | ||||
| function isBefore(el1, el2) { | ||||
|   let cur | ||||
|   if (el2.parentNode === el1.parentNode) { | ||||
|     for (cur = el1.previousSibling; cur; cur = cur.previousSibling) { | ||||
|       if (cur === el2) return true | ||||
|     } | ||||
|   } | ||||
|   return false; | ||||
| } | ||||
|  | ||||
| function dragOver(e) { | ||||
|   let target = e.target.closest(".draggable-topic") | ||||
|    | ||||
|   if (!target || target === selected) { | ||||
|     return; | ||||
|   } | ||||
|    | ||||
|   if (isBefore(selected, target)) { | ||||
|     container.insertBefore(selected, target) | ||||
|   } else { | ||||
|     container.insertBefore(selected, target.nextSibling) | ||||
|   } | ||||
| } | ||||
|  | ||||
| function dragEnd() { | ||||
|   if (!selected) return; | ||||
|    | ||||
|   selected.classList.remove("dragged") | ||||
|   selected = null; | ||||
|   for (let i = 0; i < container.childElementCount - 1; i++) { | ||||
|     let input = container.children[i].querySelector(".topic-input"); | ||||
|     input.value = i + 1; | ||||
|   } | ||||
| } | ||||
|  | ||||
| function dragStart(e) { | ||||
|   e.dataTransfer.effectAllowed = 'move' | ||||
|   e.dataTransfer.setData('text/plain', null) | ||||
|   selected = e.target | ||||
|   selected.classList.add("dragged") | ||||
| } | ||||
							
								
								
									
										10
									
								
								js/thread.js
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								js/thread.js
									
									
									
									
									
								
							| @@ -1,10 +0,0 @@ | ||||
| { | ||||
|   const ta = document.getElementById("post_content"); | ||||
|  | ||||
|   for (let button of document.querySelectorAll(".reply-button")) { | ||||
|     button.addEventListener("click", (e) => { | ||||
|       ta.value += button.value; | ||||
|       ta.scrollIntoView() | ||||
|     }) | ||||
|   } | ||||
| } | ||||
							
								
								
									
										16
									
								
								lib/auth.lua
									
									
									
									
									
								
							
							
						
						
									
										16
									
								
								lib/auth.lua
									
									
									
									
									
								
							| @@ -1,16 +0,0 @@ | ||||
| local auth = {} | ||||
|  | ||||
| local ls = require "luasodium" | ||||
|  | ||||
| function auth.digest(password) | ||||
|   return ls.crypto_pwhash_str( | ||||
|     password, | ||||
|     ls.crypto_pwhash_OPSLIMIT_INTERACTIVE, | ||||
|     ls.crypto_pwhash_MEMLIMIT_INTERACTIVE) | ||||
| end | ||||
|  | ||||
| function auth.verify(password, hash) | ||||
|   return ls.crypto_pwhash_str_verify(hash, password) | ||||
| end | ||||
|  | ||||
| return auth | ||||
| @@ -8,29 +8,22 @@ function babycode.to_html(s, escape_html) | ||||
|   -- extract code blocks first and store them as placeholders | ||||
|   -- don't want to process bbcode embedded into a code block | ||||
|   local code_blocks = {} | ||||
|   local inline_codes = {} | ||||
|   s = escape_html(s) | ||||
|   local code_count = 0 | ||||
|   local text = s:gsub("%[code%](.-)%[/code%]", function(code) | ||||
|     local is_inline = code:match("\n") == nil | ||||
|     if is_inline then | ||||
|       table.insert(inline_codes, code) | ||||
|       return "\1ICODE:"..#inline_codes.."\1" | ||||
|     else | ||||
|     code_count = code_count + 1 | ||||
|     -- strip leading and trailing newlines, preserve others | ||||
|       local m, _ = code:gsub("^%s*(.-)%s*$", "%1") | ||||
|       table.insert(code_blocks, m) | ||||
|       return "\1CODE:"..#code_blocks.."\1" | ||||
|     end | ||||
|     code_blocks[code_count] = code:gsub("^%s*(.-)%s*$", "%1") | ||||
|     return "\1CODE:"..code_count.."\1" | ||||
|   end) | ||||
|  | ||||
|   -- replace `[url=https://example.com]Example[/url] tags | ||||
|   text = text:gsub("%[url=([^%]]+)%](.-)%[/url%]", function(url, label) | ||||
|     return '<a href="'..url..'">'..label..'</a>' | ||||
|     return '<a href="'..escape_html(url)..'">'..escape_html(label)..'</a>' | ||||
|   end) | ||||
|    | ||||
|   -- replace `[url]https://example.com[/url] tags | ||||
|   text = text:gsub("%[url%]([^%]]+)%[/url%]", function(url) | ||||
|     return '<a href="'..url..'">'..url..'</a>' | ||||
|     return '<a href="'..escape_html(url)..'">'..escape_html(url)..'</a>' | ||||
|   end) | ||||
|  | ||||
|   -- bold, italics, strikethrough | ||||
| @@ -41,27 +34,17 @@ function babycode.to_html(s, escape_html) | ||||
|   -- replace loose links | ||||
|   text = text:gsub("(https?://[%w-_%.%?%.:/%+=&~%@#%%]+[%w-/])", function(url) | ||||
|     if not text:find('<a[^>]*>'..url..'</a>') then | ||||
|       return '<a href="'..url..'">'..url..'</a>' | ||||
|       return '<a href="'..escape_html(url)..'">'..escape_html(url)..'</a>' | ||||
|     end | ||||
|     return url | ||||
|   end) | ||||
|  | ||||
|   -- rule | ||||
|   text = text:gsub("\n+%-%-%-", "<hr>") | ||||
|    | ||||
|   -- normalize newlines, replace them with <br> | ||||
|   text = text:gsub("\r?\n\r?\n+", "<br>")--:gsub("\r?\n", "<br>") | ||||
|   text = text:gsub("\r?\n\r?\n+", "<br>"):gsub("\r?\n", "<br>") | ||||
|  | ||||
|   -- replace code block placeholders back with their original contents | ||||
|   text = text:gsub("\1CODE:(%d+)\1", function(n) | ||||
|     local code = code_blocks[tonumber(n)] | ||||
|     local button = ("<button type=button class=\"copy-code\" value=\"%s\">Copy</button>"):format(code) | ||||
|     return "<pre><span class=\"copy-code-container\">" .. button .. "</span><code>"..code.."</code></pre>" | ||||
|   end) | ||||
|    | ||||
|   text = text:gsub("\1ICODE:(%d+)\1", function (n) | ||||
|     local code = inline_codes[tonumber(n)] | ||||
|     return "<code class=\"inline-code\">" .. code .. "</code>" | ||||
|     return "<pre><code>"..code_blocks[tonumber(n)].."</code></pre>" | ||||
|   end) | ||||
|  | ||||
|   return text | ||||
|   | ||||
| @@ -62,10 +62,5 @@ return { | ||||
|   [8] = function () | ||||
|     schema.add_column("topics", "sort_order", types.integer{default = 0}) | ||||
|     db.query("UPDATE topics SET sort_order = (SELECT COUNT(*) FROM topics t2 WHERE t2.ROWID <= topics.ROWID)") | ||||
|   end, | ||||
|    | ||||
|   [9] = function () | ||||
|     schema.add_column("post_history", "original_markup", types.text{null = false}) | ||||
|     schema.add_column("post_history", "markup_language", types.text{default = "babycode"}) | ||||
|   end, | ||||
|   end | ||||
| } | ||||
|   | ||||
							
								
								
									
										10
									
								
								nginx.conf
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								nginx.conf
									
									
									
									
									
								
							| @@ -26,20 +26,16 @@ http { | ||||
|     } | ||||
|  | ||||
|     location /static/ { | ||||
|       alias data/static/; | ||||
|       alias static/; | ||||
|     } | ||||
|  | ||||
|     location /favicon.ico { | ||||
|       alias data/static/favicon.ico; | ||||
|       alias static/favicon.ico; | ||||
|     } | ||||
|      | ||||
|     location /avatars { | ||||
|       alias data/static/avatars; | ||||
|       alias static/avatars; | ||||
|       expires 1y; | ||||
|     } | ||||
|      | ||||
|     location /static/js/ { | ||||
|       alias js/; | ||||
|     } | ||||
|   } | ||||
| } | ||||
|   | ||||
| @@ -16,7 +16,7 @@ dependencies = { | ||||
|   "lapis == 1.16.0", | ||||
|   "lsqlite3", | ||||
|   "magick", | ||||
|   "luasodium", | ||||
|   "bcrypt", | ||||
|   "luaossl", | ||||
| } | ||||
|  | ||||
|   | ||||
| @@ -6,7 +6,6 @@ $accent_color: #c1ceb1; | ||||
|  | ||||
| $dark_bg: color.scale($accent_color, $lightness: -25%, $saturation: -97%); | ||||
| $dark2: color.scale($accent_color, $lightness: -30%, $saturation: -60%); | ||||
| $verydark: color.scale($accent_color, $lightness: -80%, $saturation: -70%); | ||||
|  | ||||
| $light: color.scale($accent_color, $lightness: 40%, $saturation: -60%); | ||||
| $lighter: color.scale($accent_color, $lightness: 60%, $saturation: -60%); | ||||
| @@ -141,55 +140,7 @@ body { | ||||
|  | ||||
| .post-content { | ||||
|   grid-area: post-content; | ||||
|   padding: 20px; | ||||
|   margin-right: 25%; | ||||
| } | ||||
|  | ||||
| pre code { | ||||
|   display: block; | ||||
|   background-color: $verydark; | ||||
|   font-size: 1rem; | ||||
|   color: white; | ||||
|   border-bottom-right-radius: 8px; | ||||
|   border-bottom-left-radius: 8px; | ||||
|   border-left: 10px solid $lighter; | ||||
|   padding: 20px; | ||||
| } | ||||
|  | ||||
| .inline-code { | ||||
|   background-color: $verydark; | ||||
|   color: white; | ||||
|   padding: 5px 10px; | ||||
|   display: inline-block; | ||||
|   margin: 4px; | ||||
|   border-radius: 4px; | ||||
|   font-size: 1rem; | ||||
| } | ||||
|  | ||||
| .copy-code-container { | ||||
|   position: sticky; | ||||
|   // width: 100%; | ||||
|   width: calc(100% - 4px); | ||||
|   display: flex; | ||||
|   justify-content: space-between; | ||||
|   align-items: last baseline; | ||||
|   font-family: sans-serif; | ||||
|   border-top-right-radius: 8px; | ||||
|   border-top-left-radius: 8px; | ||||
|   background-color: $accent_color; | ||||
|   border-left: 2px solid black; | ||||
|   border-right: 2px solid black; | ||||
|   border-top: 2px solid black; | ||||
|    | ||||
|   &::before { | ||||
|     content: "code block"; | ||||
|     font-style: italic; | ||||
|     margin-left: 10px; | ||||
|   } | ||||
| } | ||||
|  | ||||
| .copy-code { | ||||
|   margin-right: 10px; | ||||
|   padding: 5px 20px; | ||||
| } | ||||
|  | ||||
| .user-posts { | ||||
| @@ -390,7 +341,6 @@ input[type="text"], input[type="password"], textarea, select { | ||||
|   overflow: hidden; | ||||
|   text-overflow: ellipsis; | ||||
|   display: inline; | ||||
|   margin-right: 25%; | ||||
| } | ||||
|  | ||||
| .topic { | ||||
| @@ -416,45 +366,3 @@ input[type="text"], input[type="password"], textarea, select { | ||||
|   grid-area: topic-locked-container; | ||||
|   border: 2px outset $light; | ||||
| } | ||||
|  | ||||
|  | ||||
| .draggable-topic { | ||||
|   cursor: pointer; | ||||
|   user-select: none; | ||||
|   background-color: $accent_color; | ||||
|   padding: 20px; | ||||
|   margin: 12px 0; | ||||
|   border-top: 6px outset $light; | ||||
|   border-bottom: 6px outset $dark2; | ||||
|    | ||||
|   &.dragged { | ||||
|     background-color: $button_color; | ||||
|   } | ||||
| } | ||||
|  | ||||
| .editing { | ||||
|   background-color: $light; | ||||
| } | ||||
|  | ||||
| .context-explain { | ||||
|   margin: 20px 0; | ||||
|   display: flex; | ||||
|   justify-content: space-evenly; | ||||
| } | ||||
|  | ||||
| .post-edit-form { | ||||
|   display: flex; | ||||
|   flex-direction: column; | ||||
|   align-items: baseline; | ||||
|   height: 100%; | ||||
| } | ||||
|  | ||||
| .babycode-editor { | ||||
|   height: 150px; | ||||
| } | ||||
|  | ||||
|  | ||||
| ul { | ||||
|   margin: 10px 0 10px 30px; | ||||
|   padding: 0; | ||||
| } | ||||
|   | ||||
							
								
								
									
										17
									
								
								start.sh
									
									
									
									
									
								
							
							
						
						
									
										17
									
								
								start.sh
									
									
									
									
									
								
							| @@ -1,24 +1,15 @@ | ||||
| #!/bin/bash | ||||
|  | ||||
| set -e | ||||
|  | ||||
| start() { | ||||
|   lapis migrate | ||||
|   lapis serve | ||||
| } | ||||
|  | ||||
| first_launch() { | ||||
|   echo "Setting up for the first time" | ||||
|   mkdir -p secrets | ||||
|   local SECRET | ||||
|   SECRET="$(openssl rand -hex 32)" | ||||
|   echo "return { key = \"${SECRET}\",}" > secrets/secrets.lua | ||||
|   touch "secrets/.touched.$LAPIS_ENVIRONMENT" | ||||
|   mkdir -p data/db | ||||
|   luajit schema.lua | ||||
|   chmod -R a+rw data | ||||
|   touch ".first_launch.$LAPIS_ENVIRONMENT" | ||||
|   lua5.1 schema.lua | ||||
|   lapis migrate | ||||
|   luajit create_default_accounts.lua | ||||
|   lua5.1 create_default_accounts.lua | ||||
| } | ||||
|  | ||||
| if [[ $# -ne 1 ]]; then | ||||
| @@ -30,7 +21,7 @@ fi | ||||
|  | ||||
| echo "Starting in $LAPIS_ENVIRONMENT" | ||||
|  | ||||
| if ! [ -f "secrets/.touched.$LAPIS_ENVIRONMENT" ]; then | ||||
| if ! [ -f ".first_launch.$LAPIS_ENVIRONMENT" ]; then | ||||
|   first_launch | ||||
| fi | ||||
|  | ||||
|   | ||||
| Before Width: | Height: | Size: 8.3 KiB After Width: | Height: | Size: 8.3 KiB | 
| @@ -105,53 +105,7 @@ body { | ||||
| 
 | ||||
| .post-content { | ||||
|   grid-area: post-content; | ||||
|   padding: 20px; | ||||
|   margin-right: 25%; | ||||
| } | ||||
| 
 | ||||
| pre code { | ||||
|   display: block; | ||||
|   background-color: rgb(38.5714173228, 40.9237007874, 35.6762992126); | ||||
|   font-size: 1rem; | ||||
|   color: white; | ||||
|   border-bottom-right-radius: 8px; | ||||
|   border-bottom-left-radius: 8px; | ||||
|   border-left: 10px solid rgb(229.84, 231.92, 227.28); | ||||
|   padding: 20px; | ||||
| } | ||||
| 
 | ||||
| .inline-code { | ||||
|   background-color: rgb(38.5714173228, 40.9237007874, 35.6762992126); | ||||
|   color: white; | ||||
|   padding: 5px 10px; | ||||
|   display: inline-block; | ||||
|   margin: 4px; | ||||
|   border-radius: 4px; | ||||
|   font-size: 1rem; | ||||
| } | ||||
| 
 | ||||
| .copy-code-container { | ||||
|   position: sticky; | ||||
|   width: calc(100% - 4px); | ||||
|   display: flex; | ||||
|   justify-content: space-between; | ||||
|   align-items: last baseline; | ||||
|   font-family: sans-serif; | ||||
|   border-top-right-radius: 8px; | ||||
|   border-top-left-radius: 8px; | ||||
|   background-color: #c1ceb1; | ||||
|   border-left: 2px solid black; | ||||
|   border-right: 2px solid black; | ||||
|   border-top: 2px solid black; | ||||
| } | ||||
| .copy-code-container::before { | ||||
|   content: "code block"; | ||||
|   font-style: italic; | ||||
|   margin-left: 10px; | ||||
| } | ||||
| 
 | ||||
| .copy-code { | ||||
|   margin-right: 10px; | ||||
|   padding: 5px 20px; | ||||
| } | ||||
| 
 | ||||
| .user-posts { | ||||
| @@ -386,7 +340,6 @@ input[type=text]:focus, input[type=password]:focus, textarea:focus, select:focus | ||||
|   overflow: hidden; | ||||
|   text-overflow: ellipsis; | ||||
|   display: inline; | ||||
|   margin-right: 25%; | ||||
| } | ||||
| 
 | ||||
| .topic { | ||||
| @@ -411,42 +364,3 @@ input[type=text]:focus, input[type=password]:focus, textarea:focus, select:focus | ||||
|   grid-area: topic-locked-container; | ||||
|   border: 2px outset rgb(217.26, 220.38, 213.42); | ||||
| } | ||||
| 
 | ||||
| .draggable-topic { | ||||
|   cursor: pointer; | ||||
|   user-select: none; | ||||
|   background-color: #c1ceb1; | ||||
|   padding: 20px; | ||||
|   margin: 12px 0; | ||||
|   border-top: 6px outset rgb(217.26, 220.38, 213.42); | ||||
|   border-bottom: 6px outset rgb(135.1928346457, 145.0974015748, 123.0025984252); | ||||
| } | ||||
| .draggable-topic.dragged { | ||||
|   background-color: rgb(177, 206, 204.5); | ||||
| } | ||||
| 
 | ||||
| .editing { | ||||
|   background-color: rgb(217.26, 220.38, 213.42); | ||||
| } | ||||
| 
 | ||||
| .context-explain { | ||||
|   margin: 20px 0; | ||||
|   display: flex; | ||||
|   justify-content: space-evenly; | ||||
| } | ||||
| 
 | ||||
| .post-edit-form { | ||||
|   display: flex; | ||||
|   flex-direction: column; | ||||
|   align-items: baseline; | ||||
|   height: 100%; | ||||
| } | ||||
| 
 | ||||
| .babycode-editor { | ||||
|   height: 150px; | ||||
| } | ||||
| 
 | ||||
| ul { | ||||
|   margin: 10px 0 10px 30px; | ||||
|   padding: 0; | ||||
| } | ||||
							
								
								
									
										197
									
								
								util.lua
									
									
									
									
									
								
							
							
						
						
									
										197
									
								
								util.lua
									
									
									
									
									
								
							| @@ -3,7 +3,6 @@ local magick = require("magick") | ||||
| local db = require("lapis.db") | ||||
| local html_escape = require("lapis.html").escape | ||||
| local constants   = require("constants") | ||||
| local string_trim = require("lapis.util").trim | ||||
|  | ||||
| local Avatars = require("models").Avatars | ||||
| local Users = require("models").Users | ||||
| @@ -34,131 +33,10 @@ util.TransientUser = { | ||||
|   username = "Deleted User", | ||||
| } | ||||
|  | ||||
| -- PURE API | ||||
|  | ||||
| function util.get_user_avatar_url(req, user) | ||||
|   return Avatars:find(user.avatar_id).file_path | ||||
| end | ||||
|  | ||||
| ---split a string | ||||
| ---@param s string subject | ||||
| ---@param delimiter string? string to split by, can be empty to split by character | ||||
| ---@param max_matches integer? the maximum number of returned elements | ||||
| ---@param trim boolean? whether to trim whitespace off matches | ||||
| ---@param allow_empty boolean? should empty matches be in the resulting table | ||||
| ---@return string[] | ||||
| function util.s_split(s, delimiter, max_matches, trim, allow_empty) | ||||
|   local result = {} | ||||
|   if s == "" then | ||||
|     return result | ||||
|   end | ||||
|   trim = trim == nil and true or trim | ||||
|   local tr = function(subj) | ||||
|     if trim then return string_trim(subj) else return subj end | ||||
|   end | ||||
|   max_matches = max_matches or -1 | ||||
|   allow_empty = allow_empty == nil and true or allow_empty | ||||
|    | ||||
|   if delimiter == "" then | ||||
|     for i=1, #s do | ||||
|       local c = s:sub(i, 1) | ||||
|       if allow_empty or c ~= "" then | ||||
|         table.insert(result, c) | ||||
|         if max_matches > 0 and #result == max_matches then | ||||
|           break | ||||
|         end | ||||
|       end | ||||
|     end | ||||
|     return result | ||||
|   end | ||||
|    | ||||
|   local current_pos = 1 | ||||
|   local delim_len = #delimiter | ||||
|    | ||||
|   while true do | ||||
|     if max_matches > 0 and #result >= max_matches then | ||||
|       break | ||||
|     end | ||||
| ---@diagnostic disable-next-line: param-type-mismatch | ||||
|     local start_pos, end_pos = s:find(delimiter, current_pos, true) | ||||
|     if not start_pos then | ||||
|       break | ||||
|     end | ||||
|     local substr = s:sub(current_pos, start_pos - 1) | ||||
|     if allow_empty or substr ~= "" then | ||||
|       table.insert(result, tr(substr)) | ||||
|     end | ||||
|     current_pos = end_pos + 1 | ||||
|   end | ||||
|    | ||||
|   local substr = s:sub(current_pos) | ||||
|   if allow_empty or substr ~= "" then | ||||
|     table.insert(result, tr(substr)) | ||||
|   end | ||||
|    | ||||
|   return result | ||||
| end | ||||
|  | ||||
| function util.split_sentences(sentences, max_sentences) | ||||
|   return util.s_split(sentences, ".", max_sentences or 2, true, false) | ||||
| end | ||||
|  | ||||
| function util.infobox_message(msg) | ||||
|   local sentences = util.split_sentences(msg) | ||||
|   if #sentences == 1 then | ||||
|     return "<b>" .. sentences[1] .. ". " .. "</b>" | ||||
|   end | ||||
|   return "<span><b>" .. sentences[1] .. ". " .. "</b> " .. sentences[2] .. ".</span>" | ||||
| end | ||||
|  | ||||
| function util.get_logged_in_user(req) | ||||
|   if req.session.session_key == nil then | ||||
|     return nil | ||||
|   end | ||||
|  | ||||
|   local session = db.select('* FROM "sessions" WHERE "key" = ? AND "expires_at" > "?" LIMIT 1', req.session.session_key, os.time()) | ||||
|   if #session > 0 then | ||||
|     return Users:find({id = session[1].user_id}) | ||||
|   end | ||||
|  | ||||
|   return nil | ||||
| end | ||||
|  | ||||
| function util.get_logged_in_user_or_transient(req) | ||||
|   return util.get_logged_in_user(req) or util.TransientUser | ||||
| end | ||||
|  | ||||
| function util.ntob(v) | ||||
|   return v ~= 0 | ||||
| end | ||||
|  | ||||
| function util.bton(b) | ||||
|   return 1 and b or 0 | ||||
| end | ||||
|  | ||||
| function util.stob(s) | ||||
|   if s == "true" then | ||||
|     return true | ||||
|   end | ||||
|   if s == "false" then | ||||
|     return false | ||||
|   end | ||||
| end | ||||
|  | ||||
| function util.form_bool_to_sqlite(s) | ||||
|   return util.bton(util.stob(s)) | ||||
| end | ||||
|  | ||||
| function util.is_thread_locked(thread) | ||||
|   return util.ntob(thread.is_locked) | ||||
| end | ||||
|  | ||||
| function util.is_topic_locked(topic) | ||||
|   return util.ntob(topic.is_locked) | ||||
| end | ||||
|  | ||||
| -- OTHER API | ||||
|  | ||||
| function util.validate_and_create_image(input_image, filename) | ||||
|   local img = magick.load_image_from_blob(input_image) | ||||
|  | ||||
| @@ -214,8 +92,49 @@ function util.destroy_avatar(avatar_id) | ||||
|   end | ||||
| end | ||||
|  | ||||
| function util.create_post(thread_id, user_id, content, markup_language) | ||||
|   markup_language = markup_language or "babycode" | ||||
| function util.get_logged_in_user(req) | ||||
|   if req.session.session_key == nil then | ||||
|     return nil | ||||
|   end | ||||
|  | ||||
|   local session = db.select('* FROM "sessions" WHERE "key" = ? AND "expires_at" > "?" LIMIT 1', req.session.session_key, os.time()) | ||||
|   if #session > 0 then | ||||
|     return Users:find({id = session[1].user_id}) | ||||
|   end | ||||
|  | ||||
|   return nil | ||||
| end | ||||
|  | ||||
| function util.get_logged_in_user_or_transient(req) | ||||
|   return util.get_logged_in_user(req) or util.TransientUser | ||||
| end | ||||
|  | ||||
| function util.ntob(v) | ||||
|   return v ~= 0 | ||||
| end | ||||
|  | ||||
| function util.bton(b) | ||||
|   return 1 and b or 0 | ||||
| end | ||||
|  | ||||
| function util.stob(s) | ||||
|   if s == "true" then | ||||
|     return true | ||||
|   end | ||||
|   if s == "false" then | ||||
|     return false | ||||
|   end | ||||
| end | ||||
|  | ||||
| function util.form_bool_to_sqlite(s) | ||||
|   return util.bton(util.stob(s)) | ||||
| end | ||||
|  | ||||
| function util.is_thread_locked(thread) | ||||
|   return util.ntob(thread.is_locked) | ||||
| end | ||||
|  | ||||
| function util.create_post(thread_id, user_id, content) | ||||
|   db.query("BEGIN") | ||||
|   local post = Posts:create({ | ||||
|     thread_id = thread_id, | ||||
| @@ -223,17 +142,12 @@ function util.create_post(thread_id, user_id, content, markup_language) | ||||
|     current_revision_id = db.NULL, | ||||
|   }) | ||||
|    | ||||
|   local parsed_content = "" | ||||
|   if markup_language == "babycode" then | ||||
|     parsed_content = babycode.to_html(content, html_escape) | ||||
|   end | ||||
|   local bb_content = babycode.to_html(content, html_escape) | ||||
|    | ||||
|   local revision = PostHistory:create({ | ||||
|     post_id = post.id, | ||||
|     content = parsed_content, | ||||
|     content = bb_content, | ||||
|     is_initial_revision = true, | ||||
|     original_markup = content, | ||||
|     markup_language = "babycode", | ||||
|   }) | ||||
|    | ||||
|   post:update({current_revision_id = revision.id}) | ||||
| @@ -242,27 +156,6 @@ function util.create_post(thread_id, user_id, content, markup_language) | ||||
|   return post | ||||
| end | ||||
|  | ||||
| function util.update_post(post, new_content, markup_language) | ||||
|   markup_language = markup_language or "babycode" | ||||
|   db.query("BEGIN") | ||||
|    | ||||
|   local parsed_content = "" | ||||
|   if markup_language == "babycode" then | ||||
|     parsed_content = babycode.to_html(new_content, html_escape) | ||||
|   end | ||||
|    | ||||
|   local revision = PostHistory:create({ | ||||
|     post_id = post.id, | ||||
|     content = parsed_content, | ||||
|     is_initial_revision = false, | ||||
|     original_markup = new_content, | ||||
|     markup_language = markup_language | ||||
|   }) | ||||
|    | ||||
|   post:update({current_revision_id = revision.id}) | ||||
|   db.query("COMMIT") | ||||
| end | ||||
|  | ||||
| function util.transfer_and_delete_user(user) | ||||
|   local deleted_user = Users:find({ | ||||
|     username = "DeletedUser", | ||||
|   | ||||
| @@ -7,11 +7,11 @@ | ||||
|   <% else %> | ||||
|     <title>Porom</title> | ||||
|   <% end %> | ||||
|   <link rel="stylesheet" href="<%= "/static/style.css?v=" .. __cachebust %>"> | ||||
|   <% math.randomseed(os.time()) %> | ||||
|   <link rel="stylesheet" href="<%= "/static/style.css?" .. math.random(1, 100) %>"> | ||||
| </head> | ||||
| <body> | ||||
|   <% render("views.common.topnav") -%> | ||||
|   <% content_for("inner") %> | ||||
|   <script src="/static/js/copy-code.js"></script> | ||||
| </body> | ||||
| </html> | ||||
|   | ||||
| @@ -1,8 +0,0 @@ | ||||
| <span> | ||||
|   <button type=button id="post-editor-bold" title="Insert Bold">B</button> | ||||
|   <button type=button id="post-editor-italics" title="Insert Italics">I</button> | ||||
|   <button type=button id="post-editor-strike" title="Insert Strikethrough">S</button> | ||||
|   <button type=button id="post-editor-code" title="Insert Code block">Code</button> | ||||
| </span> | ||||
| <textarea class="babycode-editor" name="<%= ta_name %>" id="post_content" placeholder="Post body" required><%- prefill or "" %></textarea> | ||||
| <script src="/static/js/post-editor.js"></script> | ||||
| @@ -1,16 +0,0 @@ | ||||
| <% | ||||
|   local save_button_text = "Post reply" | ||||
|   if cancel_url then | ||||
|     save_button_text = "Save" | ||||
|   end | ||||
| %> | ||||
| <form class="post-edit-form" method="post" action="<%= url or "" %>"> | ||||
|   <% render ("views.common.babycode-editor-component", {ta_name = ta_name, prefill = prefill}) %> | ||||
|   <span> | ||||
|   <input type=submit value="<%= save_button_text %>"> | ||||
|     <% if cancel_url then %> | ||||
|       <a class="linkbutton warn" href="<%= cancel_url %>">Cancel</a> | ||||
|     <% end %> | ||||
|   </span> | ||||
|   <% render("views.common.bbcode_help") %> | ||||
| </form> | ||||
| @@ -1,21 +1,11 @@ | ||||
| <details> | ||||
|   <summary>babycode guide</summary> | ||||
|   <summary>Supported babycode tags</summary> | ||||
|   <ul> | ||||
|     <li>[b]<b>bold</b>[/b]</li> | ||||
|     <li>[i]<i>italic</i>[/i]</li> | ||||
|     <li>[s]<del>strikethrough</del>[/s]</li> | ||||
|     <li>[url=https://example.com]<a href="https://example.com">labeled URL</a>[/url]</li> | ||||
|     <li>[url]<a href="https://unlabeled-url.example.com">https://unlabeled-url.example.com</a>[/url]</li> | ||||
|     <li> | ||||
|       [code]with<br>line breaks[/code] will produce a code block: | ||||
|       <details> | ||||
|         <summary>Show code block example</summary> | ||||
|         <pre><span class="copy-code-container"><button type=button class="copy-code" value="with | ||||
| line breaks">Copy</button></span><code>with | ||||
| line breaks</code></pre> | ||||
|       </details> | ||||
|     </li> | ||||
|     <li>[code]<code class="inline-code">with no line breaks</code>[/code]</li> | ||||
|     <li><code class="inline-code">---</code> will create a horizontal rule for separating content</li> | ||||
|     <li>[code]<code>code block</code>[/code]</li> | ||||
|   </ul> | ||||
| </details> | ||||
| @@ -1,7 +1,6 @@ | ||||
| <% | ||||
|   local class = "infobox " .. constants.InfoboxHTMLClass[kind] | ||||
|   local icon = constants.InfoboxIcons[kind] | ||||
|   local sentences = infobox_message(msg) | ||||
| %> | ||||
|  | ||||
| <div class="<%= class %>"> | ||||
| @@ -9,6 +8,6 @@ | ||||
|   <div class="infobox-icon-container"> | ||||
|   <% render(icon) %> | ||||
|   </div> | ||||
|     <%- sentences %> | ||||
|     <%= msg %> | ||||
|   </span> | ||||
| </div> | ||||
|   | ||||
| @@ -1,19 +0,0 @@ | ||||
| <div class="darkbg settings-container"> | ||||
|   <% if infobox then %> | ||||
|     <% render("views.common.infobox", infobox) %> | ||||
|   <% end %> | ||||
|   <h1>Change topics order</h1> | ||||
|   <p>Drag topic titles to reoder them. Press submit when done. The topics will appear to users in the order set here.</p> | ||||
|     <form method="post" id=topics-container> | ||||
|       <% for _, topic in ipairs(topics) do %> | ||||
|         <div draggable="true" class="draggable-topic" ondragover="dragOver(event)" ondragstart="dragStart(event)" ondragend="dragEnd()"> | ||||
|           <div class="thread-title"><%= topic.name %></div> | ||||
|           <div><%= topic.description %></div> | ||||
|           <input type="hidden" name="<%= topic.id %>" value="<%= topic.sort_order %>" class="topic-input"> | ||||
|         </div> | ||||
|       <% end %> | ||||
|       <input type=submit value="Save order"> | ||||
|     </form> | ||||
| </div> | ||||
|  | ||||
| <script src="/static/js/sort-topics.js"></script> | ||||
| @@ -1,16 +0,0 @@ | ||||
| <% for _, post in ipairs(prev_context) do %> | ||||
|   <% render("views.threads.post", {post = post, edit = false, is_latest = false, no_reply = true}) %> | ||||
| <% end %> | ||||
| <span class="context-explain"> | ||||
|   <span>↑↑↑</span><i>Context</i><span>↑↑↑</span> | ||||
| </span> | ||||
| <% if infobox then %> | ||||
|   <% render("views.common.infobox", infobox) %> | ||||
| <% end %> | ||||
| <% render("views.threads.post", {post = editing_post, edit = true, is_latest = false, no_reply = true}) %> | ||||
| <span class="context-explain"> | ||||
|   <span>↓↓↓</span><i>Context</i><span>↓↓↓</span> | ||||
| </span> | ||||
| <% for _, post in ipairs(next_context) do %> | ||||
|   <% render("views.threads.post", {post = post, edit = false, is_latest = false, no_reply = true}) %> | ||||
| <% end %> | ||||
| @@ -1,9 +0,0 @@ | ||||
| <% if not post then %> | ||||
|   <% render("views.common.infobox", {kind = constants.InfoboxKind.ERROR, msg = "Post not found"}) %> | ||||
| <% else %> | ||||
|   <div class=darkbg> | ||||
|     <h1 class=thread-title><%= post.username .. "'s post in " .. thread.title %></h1> | ||||
|   </div> | ||||
|   <% render("views.threads.post", {post = post, edit = false, is_latest = false, no_reply = true}) %> | ||||
|   <a class=linkbutton href="<%= url_for("thread", {slug = thread.slug}, {after = post.id}) .. "#post-" .. post.id %>">View in context</a> | ||||
| <% end %> | ||||
| @@ -9,8 +9,8 @@ | ||||
|       </select><br> | ||||
|       <label for="title">Thread title</label> | ||||
|       <input type="text" id="title" name="title" placeholder="Required" required> | ||||
|       <label for="initial_post">Post body</label><br> | ||||
|       <% render("views.common.babycode-editor-component", {ta_name = "initial_post"}) %> | ||||
|       <label for="initial_post">Post body</label> | ||||
|       <textarea id="initial_post" name="initial_post" placeholder="Required" rows=5 required></textarea> | ||||
|       <% render "views.common.bbcode_help" %> | ||||
|       <input type="submit" value="Create thread"> | ||||
|     </form> | ||||
|   | ||||
| @@ -1,10 +1,4 @@ | ||||
|   <% | ||||
|     local pc = "post" | ||||
|     if edit then | ||||
|       pc = pc .. " editing" | ||||
|     end | ||||
|   %> | ||||
| <div class="<%= pc %>" id="post-<%= post.id %>"> | ||||
| <div class="post" id="post-<%= post.id %>"> | ||||
|   <div class="usercard"> | ||||
|     <a href="<%= url_for("user", {username = post.username}) %>" style="display: contents;"> | ||||
|     <img src="<%= post.avatar_path %>" class="avatar"> | ||||
| @@ -14,52 +8,19 @@ | ||||
|       <em class="user-status"><%= post.status %></em> | ||||
|     <% end %> | ||||
|   </div> | ||||
|  | ||||
|   <div class="post-content-container"<%= is_latest and 'id=latest-post' or "" %>> | ||||
|     <div class="post-info"> | ||||
|         <a href="<%= url_for("thread", {slug = thread.slug}, {page = page}) .. "#post-" .. post.id %>" title="Permalink"><i> | ||||
|         <div><a href="<%= "#post-" .. post.id %>" title="Permalink"><i> | ||||
|           <% if tonumber(post.edited_at) > tonumber(post.created_at) then -%> | ||||
|             Edited at <%= os.date("%c", post.edited_at) %> | ||||
|           <% else -%> | ||||
|             Posted at <%= os.date("%c", post.created_at) %> | ||||
|           <% end -%> | ||||
|         </i></a> | ||||
|         <span> | ||||
|         <% | ||||
|           local show_edit = me.id == post.user_id and not me:is_guest() and not ntob(thread.is_locked) and not no_reply | ||||
|           if show_edit then | ||||
|         %> | ||||
|             <a class="linkbutton" href="<%= url_for("edit_post", {post_id = post.id}) %>">Edit</a> | ||||
|         <% end %> | ||||
|         <% | ||||
|           local show_reply = true | ||||
|           if ntob(thread.is_locked) and not me:is_mod() then | ||||
|             show_reply = false | ||||
|           elseif me:is_guest() then | ||||
|             show_reply = false | ||||
|           elseif edit then | ||||
|             show_reply = false | ||||
|           elseif no_reply then | ||||
|             show_reply = false | ||||
|           end | ||||
|           if show_reply then | ||||
|             local d = post.created_at < post.edited_at and post.edited_at or post.created_at | ||||
|             local reply_text = ("On %s, %s said:\n%s\n\n---\n\n"):format(os.date("%c", d), post.username, post.original_markup) | ||||
|           %> | ||||
|             <button value="<%= reply_text %>" class="reply-button">Reply</button> | ||||
|           <% end %> | ||||
|         </span> | ||||
|         </i></a></div> | ||||
|         <div><button>Reply</button></div> | ||||
|     </div> | ||||
|     <div class="post-content"> | ||||
|       <% if not edit then %> | ||||
|       <%- post.content %> | ||||
|       <% else %> | ||||
|         <% render("views.common.babycode-editor", { | ||||
|           cancel_url = url_for("thread", {slug = thread.slug}, {page = page}) .. "#post-" .. post.id, | ||||
|           prefill = post.original_markup, | ||||
|           ta_name = "new_content" | ||||
|           }) %> | ||||
|       <% end %> | ||||
|     </div> | ||||
|   </div> | ||||
| </div> | ||||
|   | ||||
| @@ -1,7 +1,4 @@ | ||||
| <% | ||||
|   local is_locked = ntob(thread.is_locked) | ||||
|   local can_post = (not is_locked and not me:is_guest()) or me:is_mod() | ||||
| %> | ||||
| <% local is_locked = ntob(thread.is_locked) %> | ||||
| <main> | ||||
|   <nav class="darkbg"> | ||||
|     <h1 class="thread-title"><%= thread.title %></h1> | ||||
| @@ -19,8 +16,10 @@ | ||||
| <% if is_locked then -%> | ||||
|   <% render("views.common.infobox", {kind = constants.InfoboxKind.LOCK, msg = "This thread is locked."}) %> | ||||
| <% end -%> | ||||
| <% if can_post then %> | ||||
|   <h1>Respond to "<%= thread.title %>"</h1> | ||||
|   <% render("views.common.babycode-editor", {ta_name="post_content"}) %> | ||||
|   <script src="/static/js/thread.js"></script> | ||||
| <% if not me:is_guest() and not is_locked then %> | ||||
| <h1>Respond to "<%= thread.title %>"</h1> | ||||
| <form method="post"> | ||||
|   <textarea id="post_content" name="post_content" placeholder="Response body" required></textarea><br> | ||||
|   <input type="submit" value="Post reply"> | ||||
| </form> | ||||
| <% end %> | ||||
|   | ||||
| @@ -2,8 +2,6 @@ | ||||
|   <% render("views.common.infobox", infobox) %> | ||||
| <% end %> | ||||
|  | ||||
| <% local is_locked = ntob(topic.is_locked) %> | ||||
|  | ||||
| <nav class="darkbg"> | ||||
|   <h1 class="thread-title">All threads in "<%= topic.name %>"</h1> | ||||
|   <span><%= topic.description %></span> | ||||
| @@ -14,27 +12,25 @@ | ||||
|     <p>Your account is still pending confirmation by a moderator. You are not able to create a new thread or post at this time.</p> | ||||
|   <% elseif thread_create_error == ThreadCreateError.LOGGED_OUT then %> | ||||
|     <p>Only logged in users can create threads. <a href="<%= url_for("user_signup") %>">Sign up</a> or <a href="<%= url_for("user_login")%>">log in</a> to create a thread.</p> | ||||
|   <% else %> | ||||
|     <p>This topic is locked.</p> | ||||
|   <% end %> | ||||
|   <% if me:is_mod() then %> | ||||
|     <a class="linkbutton" href="<%= url_for("topic_edit", {slug = topic.slug}) %>">Edit topic</a> | ||||
|     <form class="modform" method="post" action="<%= url_for("topic_edit", {slug = topic.slug}) %>"> | ||||
|       <input type="hidden" name="is_locked" value="<%= not is_locked %>"> | ||||
|       <input class="warn" type="submit" id="lock" value="<%= is_locked and "Unlock topic" or "Lock topic" %>"> | ||||
|       <input type="hidden" name="is_locked" value="<%= not ntob(topic.is_locked) %>"> | ||||
|       <input class="warn" type="submit" id="lock" value="<%= ntob(topic.is_locked) and "Unlock topic" or "Lock topic" %>"> | ||||
|     </form> | ||||
|   <% end %> | ||||
|   </div> | ||||
| </nav> | ||||
|  | ||||
| <% if is_locked then -%> | ||||
|   <% render("views.common.infobox", {kind = constants.InfoboxKind.LOCK, msg = "This topic is locked. Only moderators can create new threads."}) %> | ||||
| <% end -%> | ||||
|  | ||||
| <% if #threads_list == 0 then %> | ||||
|   <p>There are no threads in this topic.</p> | ||||
| <% else %> | ||||
|   <% for _, thread in ipairs(threads_list) do %> | ||||
|     <% local is_stickied = ntob(thread.is_stickied) %> | ||||
|     <% local thread_is_locked = ntob(thread.is_locked) %> | ||||
|     <% local is_locked = ntob(thread.is_locked) %> | ||||
|     <div class="thread"> | ||||
|       <div class="thread-sticky-container contain-svg"> | ||||
|         <% if is_stickied then -%> | ||||
| @@ -58,7 +54,7 @@ | ||||
|         </span> | ||||
|       </div> | ||||
|       <div class="thread-locked-container contain-svg"> | ||||
|         <% if thread_is_locked then -%> | ||||
|         <% if is_locked then -%> | ||||
|           <% render("svg-icons.lock") %> | ||||
|           <i>Locked</i> | ||||
|         <% end -%> | ||||
|   | ||||
| @@ -2,7 +2,6 @@ | ||||
|   <h1 class="thread-title">All topics</h1> | ||||
|   <% if me:is_mod() then %> | ||||
|     <a class="linkbutton" href="<%= url_for("topic_create") %>">Create new topic</a> | ||||
|     <a class="linkbutton" href="<%= url_for("sort_topics") %>">Sort topics</a> | ||||
|   <% end %> | ||||
| </nav> | ||||
|  | ||||
| @@ -13,7 +12,7 @@ | ||||
|     <% local is_locked = ntob(topic.is_locked) %> | ||||
|     <div class="topic"> | ||||
|       <div class="topic-info-container"> | ||||
|         <a class="thread-title" href=<%= url_for("topic", {slug = topic.slug}) %>><%= topic.name %></a> | ||||
|         <a href=<%= url_for("topic", {slug = topic.slug}) %>><%= topic.name %></a> | ||||
|         <%= topic.description %> | ||||
|         <% if topic.latest_thread_username then %> | ||||
|         <span> | ||||
|   | ||||
| @@ -1,5 +1,5 @@ | ||||
| <% if infobox then %> | ||||
|   <% render("views.common.infobox", infobox) %> | ||||
|   <% render("views.common.infobox", pop_infobox) %> | ||||
| <% end %> | ||||
| <div class="darkbg"> | ||||
|   <h1 class="thread-title">Latest posts by <i><%= user.username %></i></h1> | ||||
|   | ||||
		Reference in New Issue
	
	Block a user