notehub/src/NoteHub/handler.clj

(ns notehub.handler
  (:use compojure.core
        [notehub.settings]
        [clojure.string :rename {replace sreplace}
         :only [escape split replace blank? split-lines lower-case]]
        [clojure.core.incubator :only [-?>]]
        [hiccup.form]
        [hiccup.core]
        [hiccup.element]
        [hiccup.util :only [escape-html]]
        [hiccup.page :only [include-js html5]])
  (:require [compojure.handler :as handler]
            [compojure.route :as route]
            [hiccup.util :as util]
            [notehub.api :as api]
            [notehub.storage :as storage]
            [cheshire.core :refer :all]))


; Creates the main html layout
(defn layout
  [title & content]
  (html5
   [:head
    [:title (print-str (get-message :name) "&mdash;" title)]
    [:meta {:charset "UTF-8"}]
    [:meta {:name "viewport" :content "width=device-width, initial-scale=1.0"}]
    [:link {:rel "stylesheet/less" :type "text/css" :href "/styles/main.less"}]
    (html
     (include-js "/js/less.js")
     (include-js "/js/themes.js")
     (include-js "/js/md5.js")
     (include-js "/js/marked.js")
     (include-js "/js/main.js"))
    ; google analytics code should appear in prod mode only
    (if-not (get-setting :dev-mode) (include-js "/js/google-analytics.js"))]
   [:body {:onload "onLoad()"} content]))


(defn md-node
  "Returns an HTML element with a textarea inside
  containing the markdown text (to keep all chars unescaped)"
  ([cls input] (md-node cls {} input))
  ([cls opts input]
  [(keyword (str (name cls) ".markdown")) opts
   [:textarea input]]))

(when-not (storage/valid-publisher? "NoteHub")
  (storage/register-publisher "NoteHub"))

(defn sanitize
  "Breakes all usages of <script> & <iframe>"
  [input]
  (sreplace input #"(</?(iframe|script).*?>|javascript:)" ""))

; input form for the markdown text with a preview area
(defn input-form [form-url command fields content passwd-msg]
  (let [css-class (when (= :publish command) :hidden)]
    (layout (get-message :new-note)
            [:article#preview ""]
            [:div#dashed-line {:class css-class}]
            [:div.central-element.helvetica {:style "margin-bottom: 3em"}
             (form-to {:autocomplete :off} [:post form-url]
                      (hidden-field :action command)
                      (hidden-field :version api/version)
                      (hidden-field :password)
                      fields
                      (text-area {:class :max-width} :note content)
                      [:fieldset#input-elems {:class css-class}
                       (text-field {:class "ui-elem" :placeholder (get-message passwd-msg)}
                                   :plain-password)
                       (submit-button {:class "button ui-elem"
                                       :id :publish-button} (get-message command))])])))


#_ (

    ; ######## OLD CODE START

(ns NoteHub.views.pages
  (:require )
  (:use


   [noir.response :only [redirect status content-type]]
   [noir.core :only [defpage defpartial]]
   [noir.statuses]
   [noir.util.crypt :only [encrypt]]))

; Sets a custom message for each needed HTTP status.
; The message to be assigned is extracted with a dynamically generated key
(doseq [code [400 403 404 500]]
  (set-page! code
             (let [message (get-message (keyword (str "status-" code)))]
               (layout message
                       [:article [:h1 message]]))))


(defn- response
  "shortcut for rendering an HTTP status"
  [code]
  (status code (get-page code)))

; Routes
; ======

(defpage "/" {}
  (layout (get-message :page-title)
          [:div#hero
           [:h1 (get-message :name)]
           [:h2 (get-message :title)]
           [:br]
           [:a.landing-button {:href "/new" :style "color: white"} (get-message :new-page)]]
          [:div#dashed-line]
          (md-node :article.helvetica.bottom-space
                   {:style "font-size: 1em"}
                   (slurp "LANDING.md"))
          (md-node :div.centered.helvetica (get-message :footer))))

(defpage "/:year/:month/:day/:title/export" {:keys [year month day title]}
  (when-let [md-text (:note (api/get-note (api/build-key [year month day] title)))]
    (content-type "text/plain; charset=utf-8" md-text)))

(defpage "/:year/:month/:day/:title/stats" {:keys [year month day title]}
  (when-let [stats (:statistics (api/get-note (api/build-key [year month day] title)))]
    (layout (get-message :statistics)
            [:table#stats.helvetica.central-element
             (map
              #(when (% stats)
                 [:tr [:td (str (get-message %) ":")] [:td (% stats)]])
              [:published :edited :publisher :views])])))


(defpage "/:year/:month/:day/:title/edit" {:keys [year month day title]}
  (let [noteID (api/build-key [year month day] title)]
    (input-form "/update-note" :update
                (html (hidden-field :noteID noteID))
                (:note (api/get-note noteID)) :enter-passwd)))

(defpage "/new" {}
  (input-form "/post-note" :publish
              (html (hidden-field :session (storage/create-session))
                    (hidden-field {:id :signature} :signature))
              (get-message :loading) :set-passwd))

(defpage [:post "/post-note"] {:keys [session note signature password version]}
  (if (= signature (api/get-signature session note))
    (let [pid "NoteHub"
          psk (storage/get-psk pid)]
      (if (storage/valid-publisher? pid)
        (let [resp (api/post-note note pid (api/get-signature pid psk note) {:password password})]
          (if (and
               (storage/invalidate-session session)
               (get-in resp [:status :success]))
            (redirect (:longURL resp))
            (response 400)))
        (response 500)))
    (response 400)))

(defpage [:post "/update-note"] {:keys [noteID note password version]}
  (let [pid "NoteHub"
        psk (storage/get-psk pid)]
    (if (storage/valid-publisher? pid)
      (let [resp (api/update-note noteID note pid
                                  (api/get-signature pid psk noteID note password)
                                  password)]
        (if (get-in resp [:status :success])
          (redirect (:longURL resp))
          (response 403)))
      (response 500))))

; ###### END OLD CODE
)

(defn redirect [url]
      {:status 302
       :headers {"Location" (str url)}
       :body ""})

(defroutes api-routes

  (GET "/" [] (layout (get-message :api-title)
               (md-node :article (slurp "API.md"))))

  (GET "/note" [version noteID]
       (generate-string (api/get-note noteID)))

  (POST "/note" {params :params}
        (generate-string
         (api/post-note
          (:note params)
          (:pid params)
          (:signature params)
          {:params (dissoc params :version :note :pid :signature :password)
           :password (:password params)})))

  (PUT "/note" [version noteID note pid signature password]
       (generate-string (api/update-note noteID note pid signature password))))

(defroutes app-routes
  (context "/api" [] api-routes)
  (GET "/" [] "Hello World")

  (GET "/:year/:month/:day/:title" [year month day title :as params]
  (let [params (assoc (:query-params params)
                 :year year :month month :day day :title title)
        noteID (api/build-key [year month day] title)]
    (when (storage/note-exists? noteID)
      (let [note (api/get-note noteID)
            sanitized-note (sanitize (:note note))]
        (layout (:title note)
                (md-node :article.bottom-space sanitized-note)
                (let [urls {:short-url (api/url (storage/create-short-url noteID params))
                            :notehub "/"}
                      links (map #(link-to
                                   (if (urls %)
                                     (urls %)
                                     (str (:longURL note) "/" (name %)))
                                   (get-message %))
                                 [:notehub :stats :edit :export :short-url])
                      links (interpose [:span.middot "&middot;"] links)]
                  [:div#links links]))))))

  (GET "/:short-url" [short-url]
  (when-let [params (storage/resolve-url short-url)]
    (let [{:keys [year month day title]} params
          rest-params (dissoc params :year :month :day :title)
          core-url (api/url year month day title)
          long-url (if (empty? rest-params) core-url (util/url core-url rest-params))]
      (redirect long-url))))

  (route/resources "/")
  (route/not-found "Not Found"))

(def app
  (handler/site app-routes))
moving to compojure; api done 12 years ago			`(ns notehub.handler`
			`(:use compojure.core`
			`[notehub.settings]`
			`[clojure.string :rename {replace sreplace}`
			`:only [escape split replace blank? split-lines lower-case]]`
			`[clojure.core.incubator :only [-?>]]`
			`[hiccup.form]`
			`[hiccup.core]`
			`[hiccup.element]`
			`[hiccup.util :only [escape-html]]`
			`[hiccup.page :only [include-js html5]])`
			`(:require [compojure.handler :as handler]`
			`[compojure.route :as route]`
			`[hiccup.util :as util]`
			`[notehub.api :as api]`
			`[notehub.storage :as storage]`
			`[cheshire.core :refer :all]))`
storage layer made more BL independent 12 years ago
cssgen & clojurescript dependencies deletes 12 years ago
theming moved to JS completely 12 years ago			`; Creates the main html layout`
moving to compojure; api done 12 years ago			`(defn layout`
refactoring 12 years ago			`[title & content]`
			`(html5`
			`[:head`
			`[:title (print-str (get-message :name) "—" title)]`
			`[:meta {:charset "UTF-8"}]`
typo 12 years ago			`[:meta {:name "viewport" :content "width=device-width, initial-scale=1.0"}]`
links moved to the page bottom 12 years ago			`[:link {:rel "stylesheet/less" :type "text/css" :href "/styles/main.less"}]`
refactoring 12 years ago			`(html`
			`(include-js "/js/less.js")`
fonts are loadedsynchronously now 12 years ago			`(include-js "/js/themes.js")`
refactoring 12 years ago			`(include-js "/js/md5.js")`
			`(include-js "/js/marked.js")`
fonts are loadedsynchronously now 12 years ago			`(include-js "/js/main.js"))`
refactoring 12 years ago			`; google analytics code should appear in prod mode only`
escaping bug fixed 12 years ago			`(if-not (get-setting :dev-mode) (include-js "/js/google-analytics.js"))]`
refactoring 12 years ago			`[:body {:onload "onLoad()"} content]))`
theming moved to JS completely 12 years ago
moving to compojure; api done 12 years ago
			`(defn md-node`
			`"Returns an HTML element with a textarea inside`
			`containing the markdown text (to keep all chars unescaped)"`
			`([cls input] (md-node cls {} input))`
			`([cls opts input]`
			`[(keyword (str (name cls) ".markdown")) opts`
			`[:textarea input]]))`

			`(when-not (storage/valid-publisher? "NoteHub")`
			`(storage/register-publisher "NoteHub"))`

sanitizing added 12 years ago			`(defn sanitize`
			`"Breakes all usages of <script> & <iframe>"`
			`[input]`
			`(sreplace input #"(</?(iframe\|script).*?>\|javascript:)" ""))`

note editing via passwords enabled 14 years ago			`; input form for the markdown text with a preview area`
note display routes fixed 12 years ago			`(defn input-form [form-url command fields content passwd-msg]`
front page minified 12 years ago			`(let [css-class (when (= :publish command) :hidden)]`
refactoring 12 years ago			`(layout (get-message :new-note)`
escaping bug fixed 12 years ago			`[:article#preview ""]`
front page minified 12 years ago			`[:div#dashed-line {:class css-class}]`
switched to less.js 12 years ago			`[:div.central-element.helvetica {:style "margin-bottom: 3em"}`
front page minified 12 years ago			`(form-to {:autocomplete :off} [:post form-url]`
			`(hidden-field :action command)`
migrated to API internally 12 years ago			`(hidden-field :version api/version)`
front page minified 12 years ago			`(hidden-field :password)`
			`fields`
migrated to API internally 12 years ago			`(text-area {:class :max-width} :note content)`
front page minified 12 years ago			`[:fieldset#input-elems {:class css-class}`
renamed paths to urls back 12 years ago			`(text-field {:class "ui-elem" :placeholder (get-message passwd-msg)}`
front page minified 12 years ago			`:plain-password)`
			`(submit-button {:class "button ui-elem"`
			`:id :publish-button} (get-message command))])])))`
note editing via passwords enabled 14 years ago
migrated to API internally 12 years ago
note display routes fixed 12 years ago			`#_ (`

			`; ######## OLD CODE START`

			`(ns NoteHub.views.pages`
			`(:require )`
			`(:use`


			`[noir.response :only [redirect status content-type]]`
			`[noir.core :only [defpage defpartial]]`
			`[noir.statuses]`
			`[noir.util.crypt :only [encrypt]]))`

			`; Sets a custom message for each needed HTTP status.`
			`; The message to be assigned is extracted with a dynamically generated key`
			`(doseq [code [400 403 404 500]]`
			`(set-page! code`
			`(let [message (get-message (keyword (str "status-" code)))]`
			`(layout message`
			`[:article [:h1 message]]))))`


			`(defn- response`
			`"shortcut for rendering an HTTP status"`
			`[code]`
			`(status code (get-page code)))`
escaping bug fixed 12 years ago
minor refactoring 12 years ago			`; Routes`
			`; ======`

			`(defpage "/" {}`
			`(layout (get-message :page-title)`
			`[:div#hero`
			`[:h1 (get-message :name)]`
			`[:h2 (get-message :title)]`
			`[:br]`
			`[:a.landing-button {:href "/new" :style "color: white"} (get-message :new-page)]]`
			`[:div#dashed-line]`
escaping bug fixed 12 years ago			`(md-node :article.helvetica.bottom-space`
			`{:style "font-size: 1em"}`
			`(slurp "LANDING.md"))`
			`(md-node :div.centered.helvetica (get-message :footer))))`
minor refactoring 12 years ago
export added 14 years ago			`(defpage "/:year/:month/:day/:title/export" {:keys [year month day title]}`
reads routed to API 12 years ago			`(when-let [md-text (:note (api/get-note (api/build-key [year month day] title)))]`
front page minified 12 years ago			`(content-type "text/plain; charset=utf-8" md-text)))`
wip: making the article design themable 14 years ago
panel with links added 14 years ago			`(defpage "/:year/:month/:day/:title/stats" {:keys [year month day title]}`
reads routed to API 12 years ago			`(when-let [stats (:statistics (api/get-note (api/build-key [year month day] title)))]`
front page minified 12 years ago			`(layout (get-message :statistics)`
switched to less.js 12 years ago			`[:table#stats.helvetica.central-element`
bugfix: published date was missing 12 years ago			`(map`
			`#(when (% stats)`
table styles added 12 years ago			`[:tr [:td (str (get-message %) ":")] [:td (% stats)]])`
bugfix: published date was missing 12 years ago			`[:published :edited :publisher :views])])))`
statistics added 14 years ago
front page minified 12 years ago
migrated to API internally 12 years ago			`(defpage "/:year/:month/:day/:title/edit" {:keys [year month day title]}`
			`(let [noteID (api/build-key [year month day] title)]`
renamed paths to urls back 12 years ago			`(input-form "/update-note" :update`
migrated to API internally 12 years ago			`(html (hidden-field :noteID noteID))`
			`(:note (api/get-note noteID)) :enter-passwd)))`

escaping bug fixed 12 years ago			`(defpage "/new" {}`
			`(input-form "/post-note" :publish`
			`(html (hidden-field :session (storage/create-session))`
			`(hidden-field {:id :signature} :signature))`
			`(get-message :loading) :set-passwd))`

migrated to API internally 12 years ago			`(defpage [:post "/post-note"] {:keys [session note signature password version]}`
			`(if (= signature (api/get-signature session note))`
every note associated with it's pid now 12 years ago			`(let [pid "NoteHub"`
migrated to API internally 12 years ago			`psk (storage/get-psk pid)]`
			`(if (storage/valid-publisher? pid)`
API v1.2 12 years ago			`(let [resp (api/post-note note pid (api/get-signature pid psk note) {:password password})]`
bugfix: session invalidation enabled again 12 years ago			`(if (and`
			`(storage/invalidate-session session)`
			`(get-in resp [:status :success]))`
renamed paths to urls back 12 years ago			`(redirect (:longURL resp))`
migrated to API internally 12 years ago			`(response 400)))`
			`(response 500)))`
			`(response 400)))`

			`(defpage [:post "/update-note"] {:keys [noteID note password version]}`
every note associated with it's pid now 12 years ago			`(let [pid "NoteHub"`
migrated to API internally 12 years ago			`psk (storage/get-psk pid)]`
			`(if (storage/valid-publisher? pid)`
renamed paths to urls back 12 years ago			`(let [resp (api/update-note noteID note pid`
minor refactoring 12 years ago			`(api/get-signature pid psk noteID note password)`
theming moved to JS completely 12 years ago			`password)]`
migrated to API internally 12 years ago			`(if (get-in resp [:status :success])`
renamed paths to urls back 12 years ago			`(redirect (:longURL resp))`
migrated to API internally 12 years ago			`(response 403)))`
			`(response 500))))`

moving to compojure; api done 12 years ago			`; ###### END OLD CODE`
			`)`

			`(defn redirect [url]`
			`{:status 302`
			`:headers {"Location" (str url)}`
			`:body ""})`

			`(defroutes api-routes`

			`(GET "/" [] (layout (get-message :api-title)`
			`(md-node :article (slurp "API.md"))))`

			`(GET "/note" [version noteID]`
			`(generate-string (api/get-note noteID)))`

			`(POST "/note" {params :params}`
			`(generate-string`
			`(api/post-note`
			`(:note params)`
			`(:pid params)`
			`(:signature params)`
			`{:params (dissoc params :version :note :pid :signature :password)`
			`:password (:password params)})))`

			`(PUT "/note" [version noteID note pid signature password]`
			`(generate-string (api/update-note noteID note pid signature password))))`
short urls added; landing merged with readme.md 14 years ago
moving to compojure; api done 12 years ago			`(defroutes app-routes`
			`(context "/api" [] api-routes)`
			`(GET "/" [] "Hello World")`
added routing to the API 12 years ago
note display routes fixed 12 years ago			`(GET "/:year/:month/:day/:title" [year month day title :as params]`
			`(let [params (assoc (:query-params params)`
			`:year year :month month :day day :title title)`
			`noteID (api/build-key [year month day] title)]`
			`(when (storage/note-exists? noteID)`
			`(let [note (api/get-note noteID)`
			`sanitized-note (sanitize (:note note))]`
			`(layout (:title note)`
			`(md-node :article.bottom-space sanitized-note)`
			`(let [urls {:short-url (api/url (storage/create-short-url noteID params))`
			`:notehub "/"}`
			`links (map #(link-to`
			`(if (urls %)`
			`(urls %)`
			`(str (:longURL note) "/" (name %)))`
			`(get-message %))`
			`[:notehub :stats :edit :export :short-url])`
			`links (interpose [:span.middot "·"] links)]`
			`[:div#links links]))))))`

moving to compojure; api done 12 years ago			`(GET "/:short-url" [short-url]`
			`(when-let [params (storage/resolve-url short-url)]`
			`(let [{:keys [year month day title]} params`
			`rest-params (dissoc params :year :month :day :title)`
			`core-url (api/url year month day title)`
			`long-url (if (empty? rest-params) core-url (util/url core-url rest-params))]`
			`(redirect long-url))))`
added routing to the API 12 years ago
note display routes fixed 12 years ago			`(route/resources "/")`
moving to compojure; api done 12 years ago			`(route/not-found "Not Found"))`
added routing to the API 12 years ago
moving to compojure; api done 12 years ago			`(def app`
			`(handler/site app-routes))`