Spaces:

Detomo
/

Image-uploader

Sleeping

App Files Files Community

Image-uploader / app.py

vumichien

change layout

c843383 8 months ago

raw

history blame

18.5 kB

	from fastapi import FastAPI, File, UploadFile, Request, HTTPException, Form, Depends, status
	from fastapi.responses import HTMLResponse, FileResponse, RedirectResponse
	from fastapi.staticfiles import StaticFiles
	from fastapi.templating import Jinja2Templates
	from fastapi.security import HTTPBasic, HTTPBasicCredentials
	import shutil
	import os
	import uuid
	import base64
	from pathlib import Path
	import uvicorn
	from typing import List, Optional
	import secrets
	from starlette.middleware.sessions import SessionMiddleware
	from fastapi.security import OAuth2PasswordRequestForm
	from fastapi.responses import JSONResponse
	import json

	# Create FastAPI app
	app = FastAPI(title="Image Uploader")

	# Add session middleware
	app.add_middleware(
	SessionMiddleware,
	secret_key="YOUR_SECRET_KEY_CHANGE_THIS_IN_PRODUCTION"
	)

	# Create uploads directory if it doesn't exist
	UPLOAD_DIR = Path("static/uploads")
	UPLOAD_DIR.mkdir(parents=True, exist_ok=True)

	# Create metadata directory for storing hashtags
	METADATA_DIR = Path("static/metadata")
	METADATA_DIR.mkdir(parents=True, exist_ok=True)
	METADATA_FILE = METADATA_DIR / "image_metadata.json"

	# Initialize metadata file if it doesn't exist
	if not METADATA_FILE.exists():
	with open(METADATA_FILE, "w") as f:
	json.dump({}, f)

	# Mount static directory
	app.mount("/static", StaticFiles(directory="static"), name="static")

	# Set up Jinja2 templates
	templates = Jinja2Templates(directory="templates")

	# Set up security
	security = HTTPBasic()

	# Hardcoded credentials (in a real app, use proper hashed passwords in a database)
	USERNAME = "detomo"
	PASSWORD = "itweek2025"

	def get_file_extension(filename: str) -> str:
	"""Get the file extension from a filename."""
	return os.path.splitext(filename)[1].lower()

	def is_valid_image(extension: str) -> bool:
	"""Check if the file extension is a valid image type."""
	return extension in ['.jpg', '.jpeg', '.png', '.gif', '.bmp', '.webp']

	def authenticate(request: Request):
	"""Check if user is authenticated."""
	is_authenticated = request.session.get("authenticated", False)
	return is_authenticated

	def verify_auth(request: Request):
	"""Verify authentication."""
	if not authenticate(request):
	raise HTTPException(
	status_code=status.HTTP_401_UNAUTHORIZED,
	detail="Not authenticated",
	headers={"WWW-Authenticate": "Basic"},
	)
	return True

	def get_image_metadata():
	"""Get all image metadata including hashtags."""
	if METADATA_FILE.exists():
	with open(METADATA_FILE, "r") as f:
	return json.load(f)
	return {}

	def save_image_metadata(metadata):
	"""Save image metadata to the JSON file."""
	with open(METADATA_FILE, "w") as f:
	json.dump(metadata, f)

	def add_hashtags_to_image(filename, hashtags, original_filename=None):
	"""Add hashtags to an image."""
	metadata = get_image_metadata()

	# If file exists in metadata, update its hashtags, otherwise create new entry
	if filename in metadata:
	metadata[filename]["hashtags"] = hashtags
	if original_filename:
	metadata[filename]["original_filename"] = original_filename
	else:
	metadata_entry = {"hashtags": hashtags, "is_new": True}
	if original_filename:
	metadata_entry["original_filename"] = original_filename
	metadata[filename] = metadata_entry

	save_image_metadata(metadata)

	def mark_image_as_viewed(filename):
	"""Mark an image as viewed (not new)"""
	metadata = get_image_metadata()
	if filename in metadata:
	metadata[filename]["is_new"] = False
	save_image_metadata(metadata)

	@app.get("/login", response_class=HTMLResponse)
	async def login_page(request: Request):
	"""Render the login page."""
	# If already authenticated, redirect to home
	if authenticate(request):
	return RedirectResponse(url="/", status_code=status.HTTP_302_FOUND)

	return templates.TemplateResponse(
	"login.html",
	{"request": request}
	)

	@app.post("/login")
	async def login(request: Request, form_data: OAuth2PasswordRequestForm = Depends()):
	"""Handle login form submission."""
	if form_data.username == USERNAME and form_data.password == PASSWORD:
	request.session["authenticated"] = True
	return RedirectResponse(url="/", status_code=status.HTTP_302_FOUND)
	else:
	return templates.TemplateResponse(
	"login.html",
	{"request": request, "error": "Invalid username or password"}
	)

	@app.get("/logout")
	async def logout(request: Request):
	"""Handle logout."""
	request.session.pop("authenticated", None)
	return RedirectResponse(url="/login", status_code=status.HTTP_302_FOUND)

	@app.get("/", response_class=HTMLResponse)
	async def home(request: Request, search: Optional[str] = None, tag: Optional[str] = None):
	"""Render the home page with authentication check and optional search/filter."""
	# Check if user is authenticated
	if not authenticate(request):
	return RedirectResponse(url="/login", status_code=status.HTTP_302_FOUND)

	# Get all uploaded images and their metadata
	uploaded_images = []
	metadata = get_image_metadata()

	if UPLOAD_DIR.exists():
	for file in UPLOAD_DIR.iterdir():
	if is_valid_image(get_file_extension(file.name)):
	image_url = f"/static/uploads/{file.name}"

	# Get hashtags from metadata if available
	hashtags = []
	is_new = False
	original_filename = file.name

	if file.name in metadata:
	hashtags = metadata[file.name].get("hashtags", [])
	is_new = metadata[file.name].get("is_new", False)
	original_filename = metadata[file.name].get("original_filename", file.name)

	# If searching/filtering, check if this image should be included
	if search and search.lower() not in original_filename.lower() and not any(search.lower() in tag.lower() for tag in hashtags):
	continue

	if tag and tag not in hashtags:
	continue

	uploaded_images.append({
	"name": file.name,
	"url": image_url,
	"embed_url": f"{request.base_url}static/uploads/{file.name}",
	"hashtags": hashtags,
	"is_new": is_new,
	"original_filename": original_filename
	})

	# Get all unique hashtags for the filter dropdown
	all_hashtags = set()
	for img_data in metadata.values():
	if "hashtags" in img_data:
	all_hashtags.update(img_data["hashtags"])

	return templates.TemplateResponse(
	"index.html",
	{
	"request": request,
	"uploaded_images": uploaded_images,
	"all_hashtags": sorted(list(all_hashtags)),
	"current_search": search,
	"current_tag": tag
	}
	)

	@app.post("/upload/")
	async def upload_image(
	request: Request,
	files: List[UploadFile] = File(...),
	hashtags: str = Form("")
	):
	"""Handle multiple image uploads with hashtags."""
	# Check if user is authenticated
	if not authenticate(request):
	return JSONResponse(
	status_code=status.HTTP_401_UNAUTHORIZED,
	content={"detail": "Not authenticated"}
	)

	# Process hashtags into a list
	hashtag_list = []
	if hashtags:
	# Split by spaces or commas and remove empty strings/whitespace
	hashtag_list = [tag.strip() for tag in hashtags.replace(',', ' ').split() if tag.strip()]

	results = []
	duplicates = []

	# First, check for duplicate filenames
	metadata = get_image_metadata()
	all_files = {}
	if UPLOAD_DIR.exists():
	for file in UPLOAD_DIR.iterdir():
	if is_valid_image(get_file_extension(file.name)):
	# Get original filename from metadata if available
	original_name = file.name
	if file.name in metadata and "original_filename" in metadata[file.name]:
	original_name = metadata[file.name]["original_filename"]
	all_files[original_name.lower()] = file.name

	# Check for duplicates in current upload batch
	for file in files:
	file_lower = file.filename.lower()
	if file_lower in all_files:
	# Found a duplicate
	duplicates.append({
	"new_file": file.filename,
	"existing_file": all_files[file_lower],
	"original_name": file.filename
	})

	# If we found duplicates, return them to the frontend for confirmation
	if duplicates:
	return {
	"success": False,
	"duplicates": duplicates,
	"message": "Duplicate filenames detected",
	"action_required": "confirm_replace"
	}

	# No duplicates, proceed with upload
	for file in files:
	# Check if the file is an image
	extension = get_file_extension(file.filename)
	if not is_valid_image(extension):
	continue # Skip non-image files

	# Preserve original filename in metadata but make it safe for filesystem
	original_filename = file.filename

	# Generate a unique filename to prevent overwrites
	unique_filename = f"{uuid.uuid4()}{extension}"
	file_path = UPLOAD_DIR / unique_filename

	# Save the file
	with file_path.open("wb") as buffer:
	shutil.copyfileobj(file.file, buffer)

	# Save hashtags and original filename
	add_hashtags_to_image(unique_filename, hashtag_list, original_filename)

	# For base64 encoding
	file.file.seek(0) # Reset file pointer to beginning
	contents = await file.read()
	base64_encoded = base64.b64encode(contents).decode("utf-8")

	# Determine MIME type
	mime_type = {
	'.jpg': 'image/jpeg',
	'.jpeg': 'image/jpeg',
	'.png': 'image/png',
	'.gif': 'image/gif',
	'.bmp': 'image/bmp',
	'.webp': 'image/webp'
	}.get(extension, 'application/octet-stream')

	results.append({
	"success": True,
	"file_name": unique_filename,
	"original_filename": original_filename,
	"file_url": f"/static/uploads/{unique_filename}",
	"full_url": f"{request.base_url}static/uploads/{unique_filename}",
	"embed_html": f'<img src="{request.base_url}static/uploads/{unique_filename}" alt="{original_filename}" />',
	"base64_data": f"data:{mime_type};base64,{base64_encoded[:20]}...{base64_encoded[-20:]}",
	"base64_embed": f'<img src="data:{mime_type};base64,{base64_encoded}" alt="{original_filename}" />',
	"hashtags": hashtag_list
	})

	if len(results) == 1:
	return results[0]
	else:
	return {"success": True, "uploaded_count": len(results), "files": results}

	@app.post("/upload-with-replace/")
	async def upload_with_replace(
	request: Request,
	files: List[UploadFile] = File(...),
	hashtags: str = Form(""),
	replace_files: str = Form("")
	):
	"""Handle upload with replacement of duplicate files."""
	# Check if user is authenticated
	if not authenticate(request):
	return JSONResponse(
	status_code=status.HTTP_401_UNAUTHORIZED,
	content={"detail": "Not authenticated"}
	)

	# Process hashtags into a list
	hashtag_list = []
	if hashtags:
	# Split by spaces or commas and remove empty strings/whitespace
	hashtag_list = [tag.strip() for tag in hashtags.replace(',', ' ').split() if tag.strip()]

	# Parse the replacement files JSON
	files_to_replace = []
	if replace_files:
	try:
	files_to_replace = json.loads(replace_files)
	except json.JSONDecodeError:
	files_to_replace = []

	# Create a map of original names to replacement decisions
	replace_map = {item["original_name"].lower(): item["existing_file"] for item in files_to_replace}

	results = []

	for file in files:
	# Check if the file is an image
	extension = get_file_extension(file.filename)
	if not is_valid_image(extension):
	continue # Skip non-image files

	# Preserve original filename in metadata
	original_filename = file.filename
	file_lower = original_filename.lower()

	# Check if this file should replace an existing one
	if file_lower in replace_map:
	# Delete the old file
	old_file = UPLOAD_DIR / replace_map[file_lower]
	if old_file.exists():
	os.remove(old_file)

	# Remove from metadata
	metadata = get_image_metadata()
	if replace_map[file_lower] in metadata:
	del metadata[replace_map[file_lower]]
	save_image_metadata(metadata)

	# Generate a unique filename to prevent overwrites
	unique_filename = f"{uuid.uuid4()}{extension}"
	file_path = UPLOAD_DIR / unique_filename

	# Save the file
	with file_path.open("wb") as buffer:
	shutil.copyfileobj(file.file, buffer)

	# Save hashtags and original filename
	add_hashtags_to_image(unique_filename, hashtag_list, original_filename)

	# For base64 encoding
	file.file.seek(0) # Reset file pointer to beginning
	contents = await file.read()
	base64_encoded = base64.b64encode(contents).decode("utf-8")

	# Determine MIME type
	mime_type = {
	'.jpg': 'image/jpeg',
	'.jpeg': 'image/jpeg',
	'.png': 'image/png',
	'.gif': 'image/gif',
	'.bmp': 'image/bmp',
	'.webp': 'image/webp'
	}.get(extension, 'application/octet-stream')

	results.append({
	"success": True,
	"file_name": unique_filename,
	"original_filename": original_filename,
	"file_url": f"/static/uploads/{unique_filename}",
	"full_url": f"{request.base_url}static/uploads/{unique_filename}",
	"embed_html": f'<img src="{request.base_url}static/uploads/{unique_filename}" alt="{original_filename}" />',
	"base64_data": f"data:{mime_type};base64,{base64_encoded[:20]}...{base64_encoded[-20:]}",
	"base64_embed": f'<img src="data:{mime_type};base64,{base64_encoded}" alt="{original_filename}" />',
	"hashtags": hashtag_list
	})

	if len(results) == 1:
	return results[0]
	else:
	return {"success": True, "uploaded_count": len(results), "files": results}

	@app.get("/view/{file_name}")
	async def view_image(request: Request, file_name: str):
	"""View a specific image with authentication check."""
	# Check if user is authenticated
	if not authenticate(request):
	return RedirectResponse(url="/login", status_code=status.HTTP_302_FOUND)

	file_path = UPLOAD_DIR / file_name

	if not file_path.exists():
	raise HTTPException(status_code=404, detail="Image not found")

	# Mark image as viewed (not new)
	mark_image_as_viewed(file_name)

	image_url = f"/static/uploads/{file_name}"
	embed_url = f"{request.base_url}static/uploads/{file_name}"

	# Get metadata
	metadata = get_image_metadata()
	hashtags = []
	original_filename = file_name

	if file_name in metadata:
	hashtags = metadata[file_name].get("hashtags", [])
	original_filename = metadata[file_name].get("original_filename", file_name)

	return templates.TemplateResponse(
	"view.html",
	{
	"request": request,
	"image_url": image_url,
	"file_name": file_name,
	"original_filename": original_filename,
	"embed_url": embed_url,
	"hashtags": hashtags
	}
	)

	@app.post("/update-hashtags/{file_name}")
	async def update_hashtags(request: Request, file_name: str, hashtags: str = Form("")):
	"""Update hashtags for an image."""
	# Check if user is authenticated
	if not authenticate(request):
	return JSONResponse(
	status_code=status.HTTP_401_UNAUTHORIZED,
	content={"detail": "Not authenticated"}
	)

	file_path = UPLOAD_DIR / file_name

	if not file_path.exists():
	raise HTTPException(status_code=404, detail="Image not found")

	# Process hashtags
	hashtag_list = []
	if hashtags:
	hashtag_list = [tag.strip() for tag in hashtags.replace(',', ' ').split() if tag.strip()]

	# Update hashtags in metadata
	add_hashtags_to_image(file_name, hashtag_list)

	# Redirect back to the image view
	return RedirectResponse(url=f"/view/{file_name}", status_code=status.HTTP_303_SEE_OTHER)

	@app.delete("/delete/{file_name}")
	async def delete_image(request: Request, file_name: str):
	"""Delete an image with authentication check."""
	# Check if user is authenticated
	if not authenticate(request):
	return JSONResponse(
	status_code=status.HTTP_401_UNAUTHORIZED,
	content={"detail": "Not authenticated"}
	)

	file_path = UPLOAD_DIR / file_name

	if not file_path.exists():
	raise HTTPException(status_code=404, detail="Image not found")

	# Delete the file
	os.remove(file_path)

	# Remove from metadata
	metadata = get_image_metadata()
	if file_name in metadata:
	del metadata[file_name]
	save_image_metadata(metadata)

	return {"success": True, "message": f"Image {file_name} has been deleted"}

	# Health check endpoint for Hugging Face Spaces
	@app.get("/healthz")
	async def health_check():
	return {"status": "ok"}

	if __name__ == "__main__":
	# For local development
	uvicorn.run("app:app", host="127.0.0.1", port=8000, reload=True)

	# For production/Hugging Face (uncomment when deploying)
	# uvicorn.run("app:app", host="0.0.0.0", port=7860)