csd4ni3l/grass_touching_captcha
1
0
Fork 0
mirror of https://github.com/csd4ni3l/grass_touching_captcha.git synced 2026-01-01 12:33:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

show error messages instead of Unknown Error, add an Images table so now the same images cant be uploaded multiple times

Browse Source
This commit is contained in:
csd4ni3l
2025-08-09 12:42:02 +02:00
parent 471cd21993
commit c0eb5b59dd
2 changed files with 23 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
main.py
View File

@@ -4,7 +4,7 @@ from constants import RICKROLL_LINK, UPLOAD_DIR, MINIMUM_COSINE_SIMILARITY, DATA
from jina import get_grass_touching_similarity from jina import get_grass_touching_similarity
from PIL import Image from PIL import Image
import os, flask_login, uuid, base64, sqlite3, bcrypt, secrets import os, flask_login, uuid, base64, sqlite3, bcrypt, secrets, hashlib
if os.path.exists(".env"): if os.path.exists(".env"):
load_dotenv(".env") load_dotenv(".env")
@@ -28,6 +28,13 @@ def get_db():
password_salt TEXT NOT NULL password_salt TEXT NOT NULL
) )
""") """)
db.execute("""
CREATE TABLE IF NOT EXISTS Images (
username TEXT PRIMARY KEY,
filename TEXT NOT NULL,
image_hash TEXT NOT NULL
)
""")
db.commit() db.commit()
return db return db
@@ -117,7 +124,7 @@ def resize_image_file(path, max_side=256, fmt="JPEG"):
@app.route("/upload", methods=["POST"]) @app.route("/upload", methods=["POST"])
def upload(): def upload():
try: try:
image_type, image_data = request.json["image_type"], request.json["image_data"].encode("utf-8") username, image_type, image_data = request.json["image_type"], request.json["image_data"].encode("utf-8")
if image_type == "jpeg": if image_type == "jpeg":
image_data = image_data[23:] # data:image/jpeg;base64, image_data = image_data[23:] # data:image/jpeg;base64,
@@ -127,13 +134,23 @@ def upload():
image_uuid = uuid.uuid4() image_uuid = uuid.uuid4()
if image_type not in ["png", "jpeg"]: if image_type not in ["png", "jpeg"]:
return "Invalid file type." return Response("Invalid file type.", 400)
if os.path.commonprefix((os.path.realpath(f"{UPLOAD_DIR}/{image_uuid}.{image_type}"), UPLOAD_DIR)) != UPLOAD_DIR: if os.path.commonprefix((os.path.realpath(f"{UPLOAD_DIR}/{image_uuid}.{image_type}"), UPLOAD_DIR)) != UPLOAD_DIR:
return "Why are you trying path traversal :C" return Response("Why are you trying path traversal :C", 400)
actual_image_data = base64.b64decode(image_data)
image_hash = hashlib.sha512(actual_image_data).hexdigest()
cur = get_db().cursor()
cur.execute("SELECT image_hash FROM Images WHERE image_hash = ?", (image_hash,))
if cur.fetchone():
return Response("You can touch grass multiple times. I believe in you. Dont submit the same images.", 400)
cur.execute("INSERT INTO Images (username, filename, image_hash) VALUES (?, ?, ?)", (username, image_uuid, image_hash))
get_db().commit()
with open(f"{UPLOAD_DIR}/{image_uuid}.{image_type}", "wb") as file: with open(f"{UPLOAD_DIR}/{image_uuid}.{image_type}", "wb") as file:
file.write(base64.b64decode(image_data)) file.write(actual_image_data)
resize_image_file(f"{UPLOAD_DIR}/{image_uuid}.{image_type}", fmt="JPEG" if image_type == "jpeg" else "png") resize_image_file(f"{UPLOAD_DIR}/{image_uuid}.{image_type}", fmt="JPEG" if image_type == "jpeg" else "png")

6
templates/register.jinja2
View File

@@ -59,7 +59,7 @@ function upload_file(file_type, file_content) {
} }
} }
).then(response => { ).then(response => {
if (response.status == 401) { if (response.status == 401 || response.status == 400) {
response.text().then(text => { response.text().then(text => {
if (text) { if (text) {
upload_error(text); upload_error(text);
@@ -69,10 +69,6 @@ function upload_file(file_type, file_content) {
) )
return; return;
} }
else if (response.status == 400) {
upload_error("Unknown error");
return;
}
return response.text(); return response.text();
}) })