Initial Commit

.gitignore

@@ -0,0 +1,7 @@
+secret.py
+*.sqlite3
+db.*
+
+enc/
+
+server/server/__pycache__/

server/manage.py

@@ -0,0 +1,21 @@
+#!/usr/bin/env python
+"""Django's command-line utility for administrative tasks."""
+import os
+import sys
+
+
+def main():
+    os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'server.settings')
+    try:
+        from django.core.management import execute_from_command_line
+    except ImportError as exc:
+        raise ImportError(
+            "Couldn't import Django. Are you sure it's installed and "
+            "available on your PYTHONPATH environment variable? Did you "
+            "forget to activate a virtual environment?"
+        ) from exc
+    execute_from_command_line(sys.argv)
+
+
+if __name__ == '__main__':
+    main()

server/server/apps/auth/admin.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

server/server/apps/auth/apps.py

@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class AuthConfig(AppConfig):
+    name = 'auth'

server/server/apps/auth/models.py

@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.

server/server/apps/auth/tests.py

@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.

server/server/apps/auth/views.py

@@ -0,0 +1,28 @@
+import json
+
+from oauthlib.oauth2.rfc6749.errors import InvalidGrantError
+from requests_oauthlib import OAuth2Session
+
+from django.conf import settings
+from django.shortcuts import redirect, render
+from django.urls import reverse
+
+# Create your views here. 
+def login(request):
+    oauth = OAuth2Session(settings.CLIENT_ID, redirect_uri=settings.REDIRECT_URI, scope=["read"])
+    if "error" in request.GET:
+        return redirect(reverse("login"))
+    if "code" not in request.GET:
+        authorization_url, state = oauth.authorization_url("https://ion.tjhsst.edu/oauth/authorize/")
+        return redirect(authorization_url)
+    try:
+        oauth.fetch_token("https://ion.tjhsst.edu/oauth/token/", code=request.GET["code"], client_secret=settings.CLIENT_SECRET)
+        profile = oauth.get("https://ion.tjhsst.edu/api/profile")
+        user_data = json.loads(profile.content.decode())
+        
+        
+        request.session["user"] = user_data["ion_username"]
+        request.session["type"] = user_data["user_type"]
+        return redirect(reverse("index"))
+    except InvalidGrantError:
+        return redirect(reverse("login"))

server/server/apps/content/admin.py

@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.

server/server/apps/content/apps.py

@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class ContentConfig(AppConfig):
+    name = 'content'

server/server/apps/content/models.py

@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.

server/server/apps/content/tests.py

@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.

server/server/apps/content/views.py

@@ -0,0 +1,16 @@
+from django.shortcuts import render
+from django.conf import settings
+
+# Create your views here.
+def index(request):
+    if 'type' in request.session and request.session['type'] in settings.ALLOWED_USERS:
+        return render(
+            request,
+            'index.html',
+            {
+                'user': request.session['user'],
+            },
+        )
+    else:
+        request.session.flush()
+        return render(request, 'disallow.html')

server/server/settings.py

@@ -0,0 +1,125 @@
+"""
+Django settings for server project.
+
+Generated by 'django-admin startproject' using Django 2.2.10.
+
+For more information on this file, see
+https://docs.djangoproject.com/en/2.2/topics/settings/
+
+For the full list of settings and their values, see
+https://docs.djangoproject.com/en/2.2/ref/settings/
+"""
+
+import os
+
+from .secret import *
+
+# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
+BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
+
+
+# Quick-start development settings - unsuitable for production
+# See https://docs.djangoproject.com/en/2.2/howto/deployment/checklist/
+
+# SECURITY WARNING: keep the secret key used in production secret!
+
+# SECURITY WARNING: don't run with debug turned on in production!
+DEBUG = True
+
+ALLOWED_HOSTS = [ 'bank.sites.tjhsst.edu' ]
+
+
+# Application definition
+
+INSTALLED_APPS = [
+    'django.contrib.admin',
+    'django.contrib.auth',
+    'django.contrib.contenttypes',
+    'django.contrib.sessions',
+    'django.contrib.messages',
+    'django.contrib.staticfiles',
+]
+
+MIDDLEWARE = [
+    'django.middleware.security.SecurityMiddleware',
+    'django.contrib.sessions.middleware.SessionMiddleware',
+    'django.middleware.common.CommonMiddleware',
+    'django.middleware.csrf.CsrfViewMiddleware',
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'django.contrib.messages.middleware.MessageMiddleware',
+    'django.middleware.clickjacking.XFrameOptionsMiddleware',
+]
+
+ROOT_URLCONF = 'server.urls'
+
+TEMPLATES = [
+    {
+        'BACKEND': 'django.template.backends.django.DjangoTemplates',
+        'DIRS': [
+            os.path.join(BASE_DIR, "server/templates")    
+        ],
+        'APP_DIRS': True,
+        'OPTIONS': {
+            'context_processors': [
+                'django.template.context_processors.debug',
+                'django.template.context_processors.request',
+                'django.contrib.auth.context_processors.auth',
+                'django.contrib.messages.context_processors.messages',
+            ],
+        },
+    },
+]
+
+WSGI_APPLICATION = 'server.wsgi.application'
+
+
+# Database
+# https://docs.djangoproject.com/en/2.2/ref/settings/#databases
+
+DATABASES = {
+    'default': {
+        'ENGINE': 'django.db.backends.sqlite3',
+        'NAME': os.path.join(BASE_DIR, 'db.sqlite3'),
+    }
+}
+
+
+# Password validation
+# https://docs.djangoproject.com/en/2.2/ref/settings/#auth-password-validators
+
+AUTH_PASSWORD_VALIDATORS = [
+    {
+        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
+    },
+    {
+        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
+    },
+]
+
+
+# Internationalization
+# https://docs.djangoproject.com/en/2.2/topics/i18n/
+
+LANGUAGE_CODE = 'en-us'
+
+TIME_ZONE = 'UTC'
+
+USE_I18N = True
+
+USE_L10N = True
+
+USE_TZ = True
+
+
+# Static files (CSS, JavaScript, Images)
+# https://docs.djangoproject.com/en/2.2/howto/static-files/
+
+STATIC_URL = '/static/'
+
+ALLOWED_USERS = ['student', 'teacher']

server/server/templates/base.html

@@ -0,0 +1,27 @@
+<!DOCTYPE html>
+{% load static %}
+
+<html>
+    <head>
+        <meta charset="utf-8">
+        <meta http-equiv="X-UA-Compatible" content="IE=edge">
+        <title>TJHSST</title>
+        <meta name="viewport" content="width=device-width, initial-scale=1">
+
+        <link rel="shortcut icon" href="{% static 'img/favicon.ico' %}" type="image/x-icon">
+        <link rel="stylesheet" href="{% static 'style.css' %}">
+        
+        <link href="https://unpkg.com/tailwindcss@^1.0/dist/tailwind.min.css" rel="stylesheet">
+        <link href="https://fonts.googleapis.com/css?family=Open+Sans&display=swap" rel="stylesheet">
+
+        
+        {% block head %}{% endblock %}
+    </head>
+    <body class="w-full" style="font-family: 'Open Sans';">
+        {% block root %}
+            <div class="md:w-3/4 w-full mx-auto px-4 py-8" id="root">
+                {% block body %}{% endblock %}
+            </div>
+        {% endblock %}
+    </body>
+</html>

server/server/templates/disallow.html

@@ -0,0 +1,18 @@
+{% extends 'base.html' %}
+{% block body %}
+<div class="header">
+	<h1>Study Bank</h1>
+</div>
+<div class="main">
+	<div class="login-box">
+		<p>You are not logged in. Please login with Ion to proceed.</p>
+		<center>
+			<b>{{ message }}</b><br />
+			<a href="{% url 'login' %}" class="button">
+				Log In with Ion
+			</a>
+		</center>
+	</div>
+</div>
+
+{% endblock %}

server/server/templates/index.html

@@ -0,0 +1,5 @@
+{% extends 'base.html' %}
+{% block body %}
+    <h1 class="text-4xl font-bold">Study Bank</h1>
+    <h3> Welcome, {{ user }}</h3>
+{% endblock %}

server/server/urls.py

@@ -0,0 +1,26 @@
+"""server URL Configuration
+
+The `urlpatterns` list routes URLs to views. For more information please see:
+    https://docs.djangoproject.com/en/2.2/topics/http/urls/
+Examples:
+Function views
+    1. Add an import:  from my_app import views
+    2. Add a URL to urlpatterns:  path('', views.home, name='home')
+Class-based views
+    1. Add an import:  from other_app.views import Home
+    2. Add a URL to urlpatterns:  path('', Home.as_view(), name='home')
+Including another URLconf
+    1. Import the include() function: from django.urls import include, path
+    2. Add a URL to urlpatterns:  path('blog/', include('blog.urls'))
+"""
+from django.contrib import admin
+from django.urls import path
+
+from .apps.auth import views as auth_views
+from .apps.content import views as content_views
+
+urlpatterns = [
+    path('admin/', admin.site.urls),
+    path('login/', auth_views.login, name="login"),
+    path('', content_views.index, name="index"),
+]

server/server/wsgi.py

@@ -0,0 +1,16 @@
+"""
+WSGI config for server project.
+
+It exposes the WSGI callable as a module-level variable named ``application``.
+
+For more information on this file, see
+https://docs.djangoproject.com/en/2.2/howto/deployment/wsgi/
+"""
+
+import os
+
+from django.core.wsgi import get_wsgi_application
+
+os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'server.settings')
+
+application = get_wsgi_application()