Stuce/todo
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fixed sanitisation a bit

Browse source
This commit is contained in:
stuce-bot 2025-05-19 12:06:39 +02:00
parent b07950f797
commit b6f757c35e
4 changed files with 69 additions and 48 deletions
Download patch file Download diff file Expand all files Collapse all files

52
app/FileActions.hs
View file

@ -7,34 +7,40 @@ module FileActions where
import Data.Text qualified as T import Data.Text qualified as T
import Data.Text.IO qualified as TIO import Data.Text.IO qualified as TIO
import System.Directory import System.Directory
import Text.Read qualified as TR
import TodoListItem import TodoListItem
tempFile = "tempFile" tempFile = "tempFile"
-- TODO: add sanitisation using the todo item type ? readF folder file = do
-- TODO: sometimes the whitespace does not work as expected, find why and solve it content <- readFile (folder <> file)
add folder file item = do let itemsAsStrings = lines content
content <- TIO.readFile (folder <> file) -- TODO: check if can simplify this step by making read work on list of items (i suppose it doesnt yet)
let result = content <> item let itemsAsObjects = map TR.read itemsAsStrings :: [TodoListItem]
write folder file result return itemsAsObjects
write folder file content = do writeF folder file content = do
TIO.writeFile (folder <> tempFile) content let result = show content
writeFile (folder <> tempFile) result
renameFile (folder <> tempFile) (folder <> file) renameFile (folder <> tempFile) (folder <> file)
appendF folder file item = do
content <- readF folder file
let result = content <> item -- TODO: check if more elegant solution exist (without needing a list for 1 item)
writeF folder file result
delete :: FilePath -> FilePath -> TodoListItem -> IO ()
delete folder file item = do delete folder file item = do
content <- TIO.readFile (folder <> file) content <- readF folder file
let result = T.unlines $ filter (not . item) (T.lines content) let result = filter (/= item) content
write folder file result writeF folder file result
check folder file item = do check :: FilePath -> FilePath -> TodoListItem -> IO ()
content <- TIO.readFile (folder <> file) check folder file name = do
let result = T.unlines $ map (swapIfMatch item) (T.lines content) content <- readF folder file
TIO.writeFile (folder <> tempFile) result let result = map (swapIfMatch name) content
renameFile (folder <> tempFile) (folder <> file) writeF folder file result
where
swapIfMatch name strEncodedItem = if name == strEncodedItem then swapCheck strEncodedItem else strEncodedItem swapIfMatch name item = do
if item == name
swapCheck text then TodoListItem{name = TodoListItem.name item, done = not (TodoListItem.done item)}
| T.index text 1 == 'x' = "[ ] " <> T.drop 4 text else item
| T.index text 1 == ' ' = "[x] " <> T.drop 4 text
| otherwise = error "incorrectly formated element"

32
app/Server.hs
View file

@ -2,8 +2,6 @@
{-# LANGUAGE ImportQualifiedPost #-} {-# LANGUAGE ImportQualifiedPost #-}
{-# LANGUAGE OverloadedStrings #-} {-# LANGUAGE OverloadedStrings #-}
-- For documentation purposes, I find it clearer to ignore eta reduce as it feels more natural for me in this context
module Server where module Server where
import Data.ByteString.Lazy qualified as BL import Data.ByteString.Lazy qualified as BL
@ -18,26 +16,24 @@ import Network.HTTP.Types
import Network.HTTP.Types.URI (urlDecode) import Network.HTTP.Types.URI (urlDecode)
import Network.Wai import Network.Wai
import Network.Wai.Handler.Warp (run) import Network.Wai.Handler.Warp (run)
import TodoListItem
application req respond = application req respond =
case (requestMethod req, pathInfo req) of case (requestMethod req, pathInfo req) of
("GET", []) -> do ("GET", []) -> do
content <- TIO.readFile "./app/res/b" -- TODO: move that in fileActions content <- FA.readF "./app/res/" "b"
respond $ respond $
responseLBS status200 [("Content-Type", "text/html")] $ responseLBS status200 [("Content-Type", "text/html")] $
TLE.encodeUtf8 $ convert $
TL.fromStrict $ simpleSite (show content) -- TODO: check if necessary to use text
simpleSite content
("GET", ["edit"]) -> do ("GET", ["edit"]) -> do
content <- TIO.readFile "./app/res/b" -- TODO: move that in fileActions content <- FA.readF "./app/res/" "b"
respond $ respond $
responseLBS status200 [("Content-Type", "text/html")] $ responseLBS status200 [("Content-Type", "text/html")] $
TLE.encodeUtf8 $ convert $
TL.fromStrict $ editPage (show content)
editPage content
("POST", ["edit"]) -> do ("POST", ["edit"]) -> do
-- TODO: refactor this shit, add sanitisation, make sure text ends with \n -- TODO: refactor this shit, add sanitisation, make sure text ends with \n
putStrLn "overwriting list"
body <- strictRequestBody req body <- strictRequestBody req
print body print body
let args = L8.split '&' body let args = L8.split '&' body
@ -50,11 +46,12 @@ application req respond =
case pair of case pair of
("list=", t) -> do ("list=", t) -> do
let text = TE.decodeUtf8 (urlDecode True (BL.toStrict t)) let text = TE.decodeUtf8 (urlDecode True (BL.toStrict t))
FA.write "./app/res/" "b" text let result = map read (lines $ T.unpack text) :: [TodoListItem]
FA.writeF "./app/res/" "b" result
_ -> error "incorrect args" _ -> error "incorrect args"
respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..." respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..."
("POST", ["check", name]) -> do ("POST", ["check", name]) -> do
FA.check "./app/res/" "b" name FA.check "./app/res/" "b" (read $ T.unpack name)
respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..." respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..."
-- TODO: refactor this using where better and creating meaningfull local functions -- TODO: refactor this using where better and creating meaningfull local functions
("POST", ["add"]) -> do ("POST", ["add"]) -> do
@ -70,7 +67,8 @@ application req respond =
case pair of case pair of
("text=", t) -> do ("text=", t) -> do
let text = TE.decodeUtf8 (urlDecode True (BL.toStrict t)) let text = TE.decodeUtf8 (urlDecode True (BL.toStrict t))
FA.add "./app/res/" "b" text let item = read (T.unpack text) :: TodoListItem
FA.appendF "./app/res/" "b" [item]
_ -> error "incorrect args" _ -> error "incorrect args"
respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..." respond $ responseLBS status303 [(hLocation, "/")] "Redirecting..."
(method, array) -> do (method, array) -> do
@ -101,6 +99,7 @@ label for = wrapContentWithArgs "label" ("for=" <> for)
textArea id rows cols = wrapContentWithArgs "textarea" ("id=\"" <> id <> "\" name=\"" <> id <> "\" rows=\"" <> rows <> "\" cols=\"" <> cols <> "\"") textArea id rows cols = wrapContentWithArgs "textarea" ("id=\"" <> id <> "\" name=\"" <> id <> "\" rows=\"" <> rows <> "\" cols=\"" <> cols <> "\"")
checkbox id name checked = checkboxPrimitive id name checked <> label id name checkbox id name checked = checkboxPrimitive id name checked <> label id name
simpleSite :: String -> String
simpleSite content = simpleSite content =
headHtml "en" "todo" headHtml "en" "todo"
<> h1 "Bienvenue" <> h1 "Bienvenue"
@ -111,9 +110,8 @@ simpleSite content =
<> rawEditButton <> rawEditButton
<> tailHtml <> tailHtml
where where
f content = T.concat $ map item (T.lines content) f content = concatMap item (lines content)
item :: T.Text -> T.Text
item rawLine = "<form action=\"/check/" <> rawLine <> "\" method=\"POST\"><button type=\"submit\">" <> rawLine <> "</button></form>" item rawLine = "<form action=\"/check/" <> rawLine <> "\" method=\"POST\"><button type=\"submit\">" <> rawLine <> "</button></form>"
newItemForm = "<form action=\"/add\" method=\"post\"><input type=\"text\" name=\"text\" placeholder=\"[ ] add a new item\"><button type=\"submit\">Add</button></form>" newItemForm = "<form action=\"/add\" method=\"post\"><input type=\"text\" name=\"text\" placeholder=\"[ ] add a new item\"><button type=\"submit\">Add</button></form>"
@ -132,3 +130,5 @@ rawEditButton = link "/edit" "edit todo list"
runServer = do runServer = do
run 3000 application run 3000 application
convert = BL.fromStrict . TE.encodeUtf8 . T.pack

23
app/TodoListItem.hs
View file

@ -4,12 +4,29 @@ data TodoListItem = TodoListItem
{ name :: String { name :: String
, done :: Bool , done :: Bool
} }
deriving (Eq)
instance Show TodoListItem where instance Show TodoListItem where
show (TodoListItem name done) = show (TodoListItem name done) =
s done ++ " " ++ name ++ "\n" s done ++ " " ++ name ++ "\n"
where where
s True = "[x]" s True = "x"
s False = "[ ]" s False = "o"
showList = foldr ((.) . shows) id
-- TODO: create a class to render items to html to make it easier to create everything for the website using the web primitives instance Read TodoListItem where
readsPrec _ input =
let
parts = words input
in
case parts of
(status : nameParts) ->
let
name = unwords nameParts -- Join the remaining parts as the name
done = case status of
"x" -> True
"o" -> False
_ -> error "Invalid status"
in
[(TodoListItem name done, "")]
_ -> []

10
app/res/b
View file

@ -1,6 +1,4 @@
[ ] Wake up o Wake up
[ ] Eat o Eat
[ ] Sleep o Sleep
[x] Repeat o Repeat
[x]
[ ] dasd