|
import os
|
|
from werkzeug.utils import secure_filename
|
|
from functools import wraps
|
|
from flask import current_app, request, redirect, url_for, session, send_file
|
|
import markdown
|
|
from markupsafe import Markup
|
|
from app.extensions import db
|
|
from app.models import Image
|
|
import io
|
|
|
|
def markdown_to_html(text):
|
|
return Markup(markdown.markdown(text, extensions=['fenced_code', 'tables']))
|
|
|
|
def allowed_file(filename):
|
|
"""Check if uploaded file has allowed extension"""
|
|
return '.' in filename and \
|
|
filename.rsplit('.', 1)[1].lower() in current_app.config['ALLOWED_EXTENSIONS']
|
|
|
|
def handle_image_upload(file):
|
|
"""Handle image upload and store in database"""
|
|
if file and allowed_file(file.filename):
|
|
filename = secure_filename(file.filename)
|
|
image = Image(
|
|
filename=filename,
|
|
data=file.read(),
|
|
mime_type=file.content_type
|
|
)
|
|
db.session.add(image)
|
|
db.session.commit()
|
|
return f'/api/images/{image.id}'
|
|
return None
|
|
|
|
def login_required(f):
|
|
"""Decorator to require login for admin routes"""
|
|
@wraps(f)
|
|
def decorated_function(*args, **kwargs):
|
|
if not session.get('logged_in'):
|
|
return redirect(url_for('admin.login'))
|
|
return f(*args, **kwargs)
|
|
return decorated_function
|
|
|
|
def check_auth(username, password):
|
|
"""Check if username and password match environment variables"""
|
|
return (username == current_app.config['ADMIN_USERNAME'] and
|
|
password == current_app.config['ADMIN_PASSWORD']) |
