computertech/ircquotes
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Complete ircquotes application with all features

Browse Source 
- Added copy quote functionality with clipboard integration
- Implemented bulk moderation actions for admin
- Created mobile responsive design with bash.org styling
- Added API rate limiting per IP address
- Implemented dark mode toggle with flash prevention
- Enhanced error messages throughout application
- Fixed all security vulnerabilities (SQL injection, XSS, CSRF)
- Added comprehensive rate limiting on all endpoints
- Implemented secure session configuration
- Added input validation and length limits
- Created centralized configuration system with config.json
- Set up production deployment with Gunicorn
- Added security headers and production hardening
- Added password generation and config management tools
This commit is contained in:
Colby Lipsett
2025-09-20 19:41:23 +01:00
parent 0b1241714d
commit f409977257
21 changed files with 1936 additions and 304 deletions
Download Patch File Download Diff File Expand all files Collapse all files

129
templates/modapp.html
View File

@@ -5,6 +5,17 @@
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>ircquotes: Admin Panel</title>
<link rel="stylesheet" href="{{ url_for('static', filename='styles.css') }}" />
<script>
// Prevent flash of white content by applying theme immediately
(function() {
const savedTheme = localStorage.getItem('theme');
const prefersDark = window.matchMedia && window.matchMedia('(prefers-color-scheme: dark)').matches;
if (savedTheme === 'dark' || (!savedTheme && prefersDark)) {
document.documentElement.className = 'dark-theme';
}
})();
</script>
<script src="{{ url_for('static', filename='theme.js') }}"></script>
</head>
<body bgcolor="#ffffff" text="#000000" link="#c08000" vlink="#c08000" alink="#c08000">
@@ -29,6 +40,7 @@
<a href="/submit">Submit</a> /
<a href="/browse">Browse</a> /
<a href="/modapp">Modapp</a>
<button id="theme-toggle" onclick="toggleDarkMode()" title="Toggle dark/light mode">🌙</button>
</td>
</tr>
</table>
@@ -45,48 +57,130 @@
<option value="pending" {% if filter_status == 'pending' %}selected{% endif %}>Pending</option>
<option value="approved" {% if filter_status == 'approved' %}selected{% endif %}>Approved</option>
<option value="rejected" {% if filter_status == 'rejected' %}selected{% endif %}>Rejected</option>
<option value="flagged" {% if filter_status == 'flagged' %}selected{% endif %}>Flagged</option>
</select>
<input type="submit" value="Apply Filter">
</form>
{% if quotes.items %}
<!-- Bulk Actions Form -->
<form id="bulk-action-form" method="POST" action="/modapp/bulk">
<input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
<div style="margin: 10px 0; padding: 10px; background-color: #f0f0f0; border: 1px solid #ccc;">
<b>Bulk Actions:</b>
<input type="checkbox" id="select-all" onchange="toggleAllCheckboxes(this)"> <label for="select-all">Select All</label>
&nbsp;&nbsp;
<button type="submit" name="action" value="approve" class="qa" onclick="return confirmBulkAction('approve')">Bulk Approve</button>
<button type="submit" name="action" value="reject" class="qa" onclick="return confirmBulkAction('reject')">Bulk Reject</button>
<button type="submit" name="action" value="delete" class="qa" onclick="return confirmBulkAction('delete')">Bulk Delete</button>
<button type="submit" name="action" value="clear_flags" class="qa" onclick="return confirmBulkAction('clear flags')">Clear All Flags</button>
</div>
<!-- Table for Quotes -->
<div class="modapp-table-container">
<table border="1" cellpadding="5" cellspacing="0" width="100%">
<tr>
<th>Select</th>
<th>Quote ID</th>
<th>Quote</th>
<th>Status</th>
<th>Submitted At</th>
<th>IP Address</th>
<th>User Agent</th>
<th>Flags</th>
<th class="mobile-hide">Submitted At</th>
<th class="mobile-hide">IP Address</th>
<th class="mobile-hide">User Agent</th>
<th>Actions</th>
</tr>
<!-- Loop through quotes -->
{% for quote in quotes.items %}
<tr style="background-color:
{% if quote.status == 1 %} #d4edda {% elif quote.status == 2 %} #f8d7da {% else %} #fff {% endif %}">
{% if quote.flag_count > 5 %} #ffcccc {% elif quote.flag_count > 2 %} #ffe6cc {% elif quote.status == 1 %} #d4edda {% elif quote.status == 2 %} #f8d7da {% else %} #fff {% endif %}">
<td><input type="checkbox" name="quote_ids" value="{{ quote.id }}" class="quote-checkbox"></td>
<td>#{{ quote.id }}</td>
<td>{{ quote.text }}</td>
<td>{{ quote.text|e }}</td>
<td>
{% if quote.status == 0 %}
Pending
{% elif quote.status == 1 %}
Approved
{% if filter_status == 'flagged' %}
<!-- Prominent status display for flagged quotes -->
{% if quote.status == 0 %}
<span style="background-color: #fff3cd; padding: 2px 6px; border-radius: 3px; font-weight: bold;">⚠️ PENDING + FLAGGED</span>
{% elif quote.status == 1 %}
<span style="background-color: #d4edda; padding: 2px 6px; border-radius: 3px; font-weight: bold;">✅ APPROVED + FLAGGED</span>
{% else %}
<span style="background-color: #f8d7da; padding: 2px 6px; border-radius: 3px; font-weight: bold;">❌ REJECTED + FLAGGED</span>
{% endif %}
{% else %}
Rejected
<!-- Normal status display -->
{% if quote.status == 0 %}
Pending
{% elif quote.status == 1 %}
Approved
{% else %}
Rejected
{% endif %}
{% endif %}
</td>
<td>{{ quote.submitted_at.strftime('%Y-%m-%d %H:%M:%S') if quote.submitted_at else 'N/A' }}</td>
<td>{{ quote.ip_address }}</td>
<td>{{ quote.user_agent }}</td>
<td>
<a href="/approve/{{ quote.id }}">Approve</a> |
<a href="/reject/{{ quote.id }}">Reject</a> |
<a href="/delete/{{ quote.id }}">Delete</a>
{% if quote.flag_count > 0 %}
<span style="color: red; font-weight: bold;">{{ quote.flag_count }}</span>
{% else %}
0
{% endif %}
</td>
<td class="mobile-hide">{{ quote.submitted_at.strftime('%Y-%m-%d %H:%M:%S') if quote.submitted_at else 'N/A' }}</td>
<td class="mobile-hide">{{ quote.ip_address|e }}</td>
<td class="mobile-hide">{{ quote.user_agent|e|truncate(50) }}</td>
<td>
{% if filter_status == 'flagged' %}
<!-- Special actions for flagged quotes -->
{% if quote.status == 1 %}
<!-- Already approved but flagged -->
<a href="/clear_flags/{{ quote.id }}" style="color: blue;">Clear Flags</a> |
<a href="/reject/{{ quote.id }}" style="color: orange;">Reject</a> |
<a href="/delete/{{ quote.id }}" style="color: red;">Delete</a>
{% elif quote.status == 0 %}
<!-- Pending and flagged -->
<a href="/approve/{{ quote.id }}" style="color: green;">Approve</a> |
<a href="/clear_flags/{{ quote.id }}" style="color: blue;">Clear Flags</a> |
<a href="/reject/{{ quote.id }}" style="color: orange;">Reject</a> |
<a href="/delete/{{ quote.id }}" style="color: red;">Delete</a>
{% else %}
<!-- Rejected and flagged -->
<a href="/clear_flags/{{ quote.id }}" style="color: blue;">Clear Flags</a> |
<a href="/delete/{{ quote.id }}" style="color: red;">Delete</a>
{% endif %}
{% else %}
<!-- Standard actions for non-flagged quotes -->
<a href="/approve/{{ quote.id }}">Approve</a> |
<a href="/reject/{{ quote.id }}">Reject</a> |
<a href="/delete/{{ quote.id }}">Delete</a>
{% endif %}
</td>
</tr>
{% endfor %}
</table>
</div>
</form>
<!-- Bulk Actions JavaScript -->
<script>
function toggleAllCheckboxes(selectAllCheckbox) {
const checkboxes = document.querySelectorAll('.quote-checkbox');
checkboxes.forEach(checkbox => {
checkbox.checked = selectAllCheckbox.checked;
});
}
function confirmBulkAction(action) {
const selectedCheckboxes = document.querySelectorAll('.quote-checkbox:checked');
if (selectedCheckboxes.length === 0) {
alert('Please select at least one quote.');
return false;
}
const count = selectedCheckboxes.length;
const message = `Are you sure you want to ${action} ${count} selected quote(s)?`;
return confirm(message);
}
</script>
<!-- Pagination Links -->
<div id="pagination">
@@ -118,7 +212,8 @@
<tr>
<td class="footertext" align="left">&nbsp;</td>
<td class="footertext" align="right">
{{ approved_count }} quotes approved; {{ pending_count }} quotes pending; {{ rejected_count }} quotes rejected
{{ approved_count }} quotes approved; {{ pending_count }} quotes pending; {{ rejected_count }} quotes rejected;
<span style="color: red; font-weight: bold;">{{ flagged_count }} quotes flagged</span>
</td>
</tr>
</table>