async def handle_add_blurb_get(request):
"""Render a page with a textbox and submit button."""
token = request.rel_url.query.get("code")
request_session = await get_session(request)
context = {"csrf": util.get_csrf_token(session=request_session)}
if await util.has_session(request):
context.update(await util.get_session_context(request, context))
async with aiohttp.ClientSession() as session:
gh = GitHubAPI(session, context["username"])
jwt = get_jwt(
app_id=os.getenv("GH_APP_ID"), private_key=os.getenv("GH_PRIVATE_KEY")
)
try:
await util.get_installation(gh, jwt, context["username"])
except error.InstallationNotFound:
return web.HTTPFound(location=request.app.router["install"].url_for())
elif token is not None:
async with aiohttp.ClientSession() as session:
payload = {
"client_id": os.environ.get("GH_CLIENT_ID"),
"client_secret": os.environ.get("GH_CLIENT_SECRET"),
"code": token,
}
async with session.post(
"https://github.com/login/oauth/access_token", data=payload
) as response:
response_text = await response.text()
access_token = get_access_token(response_text)
gh = GitHubAPI(session, "blurb-it", oauth_token=access_token)
response = await gh.getitem("/user")
login_name = response["login"]
request_session["username"] = login_name
request_session["token"] = access_token
context["username"] = request_session["username"]
gh = GitHubAPI(session, context["username"])
jwt = get_jwt(
app_id=os.getenv("GH_APP_ID"),
private_key=os.getenv("GH_PRIVATE_KEY"),
)
try:
await util.get_installation(gh, jwt, context["username"])
except error.InstallationNotFound:
return web.HTTPFound(
location=request.app.router["install"].url_for()
)
else:
return web.HTTPFound(location=request.app.router["home"].url_for())
response = aiohttp_jinja2.render_template(
"add_blurb.html", request, context=context
)
return response
async def handle_add_blurb_post(request):
if await util.has_session(request):
session_context = await util.get_session_context(request)
request_session = await get_session(request)
data = await request.post()
csrf_form = data.get("csrf", "").strip()
if not util.compare_csrf_tokens(
csrf_form, util.get_csrf_token(session=request_session)):
raise web.HTTPForbidden(reason="Invalid CSRF token. Please retry.")
bpo_number = data.get("bpo_number", "").strip()
section = data.get("section", "").strip()
news_entry = data.get("news_entry", "").strip() + "\n"
path = await util.get_misc_news_filename(bpo_number, section,
news_entry)
pr_number = data.get("pr_number", "").strip()
context = {}
context.update(session_context)
async with aiohttp.ClientSession() as session:
gh = GitHubAPI(session, session_context["username"])
jwt = get_jwt(app_id=os.getenv("GH_APP_ID"),
private_key=os.getenv("GH_PRIVATE_KEY"))
try:
installation = await util.get_installation(
gh, jwt, session_context["username"])
except error.InstallationNotFound:
return web.HTTPFound(
location=request.app.router["install"].url_for())
else:
access_token = await get_installation_access_token(
gh,
installation_id=installation["id"],
app_id=os.getenv("GH_APP_ID"),
private_key=os.getenv("GH_PRIVATE_KEY"),
)
gh = GitHubAPI(
session,
session_context["username"],
oauth_token=access_token["token"],
)
pr = await gh.getitem(
f"/repos/python/cpython/pulls/{pr_number}")
pr_repo_full_name = pr["head"]["repo"]["full_name"]
encoded = base64.b64encode(str.encode(news_entry))
decoded = encoded.decode("utf-8")
put_data = {
"branch": pr["head"]["ref"],
"content": decoded,
"path": path,
"message": "📜🤖 Added by blurb_it.",
}
try:
response = await gh.put(
f"/repos/{pr_repo_full_name}/contents/{path}",
data=put_data)
except gidgethub.BadRequest as bac:
print("BadRequest")
print(int(bac.status_code))
print(bac)
context[
"pr_url"] = f"https://github.com/python/cpython/pull/{pr_number}"
context["pr_number"] = pr_number
context["status"] = "failure"
else:
commit_url = response["commit"]["html_url"]
context["commit_url"] = commit_url
context["path"] = response["content"]["path"]
context[
"pr_url"] = f"https://github.com/python/cpython/pull/{pr_number}"
context["pr_number"] = pr_number
context["status"] = "success"
template = "add_blurb.html"
response = aiohttp_jinja2.render_template(template,
request,
context=context)
return response
else:
return web.HTTPFound(
location=request.app.router["add_blurb"].url_for())
def test_get_csrf_token__existing():
assert util.get_csrf_token({"csrf": "foobar"}) == "foobar"
def test_get_csrf_token__not_existing(mocker):
mocker.patch("blurb_it.util.create_csrf_token", return_value="foobar")
assert util.get_csrf_token({}) == "foobar"