Merge branch 'dev' into Draft_api

Author: oddstr13

.git-blame-ignore-revs

@@ -0,0 +1,2 @@
+# Autoformat: black
+2ee4a7853e7eb55e47653d5f69f271f858a6d3a8

.github/renovate.json

@@ -0,0 +1,6 @@
+{
+	"$schema": "https://docs.renovatebot.com/renovate-schema.json",
+	"extends": [
+		"github>EventAccess/renovate-config"
+	]
+}

.github/workflows/python-linting.yaml

@@ -0,0 +1,88 @@
+name: Python
+on:
+  pull_request:
+  push:
+    branches:
+      - dev
+jobs:
+  python-mypy:
+    name: Mypy
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+
+    steps:
+      - uses: actions/checkout@v4.2.2
+
+      - name: Set up Python
+        uses: actions/setup-python@v5.4.0
+        with:
+          python-version: 3.12
+          cache: 'pip'
+          cache-dependency-path: |
+            **/requirements.txt
+            **/requirements-*.txt
+
+      - name: Install reviewdog
+        uses: reviewdog/action-setup@v1.3.0
+        with:
+          reviewdog_version: latest
+
+      - name: Install dependencies
+        run: pip install -r requirements-dev.txt
+
+      - name: Run MyPy
+        run: |
+          mypy --output=json \
+          | jq -Mac '{"message":(.message+"\n"+.hint),"location":{"path":.file,"range":{"start":{"line":.line,"column":.column}}},"severity":.severity|ascii_upcase,"code":{"url":"https://mypy.readthedocs.io/en/stable/error_code_list.html","value":.code}}' \
+          | reviewdog -f=rdjsonl -reporter=github-check -name mypy -fail-level warning -filter-mode nofilter
+        env:
+          REVIEWDOG_GITHUB_API_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+  python-black:
+    name: Black
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
+
+    steps:
+      - uses: actions/checkout@v4.2.2
+
+      - name: Set up Python
+        uses: actions/setup-python@v5.4.0
+        with:
+          python-version: 3.12
+          cache: 'pip'
+          cache-dependency-path: |
+            **/requirements.txt
+            **/requirements-*.txt
+
+      - name: Install reviewdog
+        uses: reviewdog/action-setup@v1.3.0
+        with:
+          reviewdog_version: v0.20.1
+
+      - name: Install dependencies
+        run: pip install -r requirements-dev.txt
+
+      - name: Run Black
+        if: github.event_name == 'pull_request'
+        uses: reviewdog/action-black@v3.22.2
+        with:
+          reporter: github-pr-review
+          tool_name: black
+          level: warning
+          fail_on_error: true
+          filter_mode: nofilter
+
+      - name: Run Black
+        if: github.event_name == 'push'
+        uses: reviewdog/action-black@v3.22.2
+        with:
+          reporter: github-check
+          tool_name: black
+          level: warning
+          fail_on_error: true
+          filter_mode: nofilter

.gitignore

@@ -1,3 +1,4 @@
-*.py[ocd]
-**/.env
-*.sqlite3
+*.py[ocd]
+**/.env
+*.sqlite3
+venv

Dockerfile

@@ -1,4 +1,4 @@
-FROM python:3.12.7 AS base
+FROM python:3.13.1 AS base
 
 WORKDIR /app
 
@@ -21,7 +21,7 @@ COPY . .
 RUN DJANGO_STATIC_ROOT=/static python manage.py collectstatic --no-input
 RUN find /static -ls
 
-FROM ghcr.io/static-web-server/static-web-server:2.33.1 AS static-server
+FROM ghcr.io/static-web-server/static-web-server:2.35.0 AS static-server
 WORKDIR /srv/http
 ENV SERVER_ROOT=/srv/http
 

backendapi/admin.py

@@ -1 +1,11 @@
-from django.contrib import admin
+from django.contrib import admin
+from database.models import Attendant
+from base64 import b16encode
+
+
+@admin.register(Attendant)
+class AttendantAdmin(admin.ModelAdmin):
+    list_display = ("ticket_id", "nfc_id_decoded", "discord", "is_crew", "is_valid")
+
+    def nfc_id_decoded(self, obj):
+        return b16encode(obj.nfc_id).decode()

backendapi/urls.py

@@ -6,4 +6,6 @@
 urlpatterns = [
     path("nfctag/<hex:tag>", views.scanned),
     path("test", views.api_get, name="api_get"),
+    path("tickets/verify/<slug:ticket>", views.verify_ticket, name="verify_ticket"),
+    path("attendants", views.create_attendant, name="create_attendant"),
 ]

backendapi/views.py

@@ -3,6 +3,10 @@
 from django.views.decorators.http import require_POST
 from django.views.decorators.cache import never_cache
 from django.http import JsonResponse
+from rest_framework.decorators import api_view
+from rest_framework.response import Response
+from rest_framework import status
+from base64 import b16decode, b16encode
 
 from rest_framework.decorators import api_view
 from rest_framework.response import Response
@@ -100,14 +104,6 @@ def api_get(request, pk=None):
         )
 
 
-"""
-def api_get(request):
-    if request.method == "GET":
-        return Response({"message": "GET request received"}, status=202)
-    elif request.method == "POST":
-        return Response({"message": "POST request received"}, status=405) """
-
-
 def base_view(request):  # basic frontend registration view.
     return render(request, "base.html")
 
@@ -132,3 +128,38 @@ def registration_view(request):
         "success": success,
     }
     return render(request, "registration.html", context)
+
+
+@api_view(["GET"])
+def verify_ticket(request, ticket):
+    # TODO: Implement ticket check
+    if ticket == "test123":
+        return Response(
+            {"is_valid": True},
+            status=status.HTTP_200_OK,
+        )
+    return Response(
+        {"is_valid": False},
+        status=status.HTTP_400_BAD_REQUEST,
+    )
+
+
+@api_view(["POST"])
+def create_attendant(request):
+    ticket_id = request.data.get("ticket_id")
+    nfc_id = b16decode(request.data.get("nfc_id"), casefold=True)
+
+    if not ticket_id or not nfc_id:
+        return Response(
+            {"error": "ticket_id and nfc_id are required."},
+            status=status.HTTP_400_BAD_REQUEST,
+        )
+
+    attendant = Attendant.objects.create(ticket_id=ticket_id, nfc_id=nfc_id)
+
+    return Response(
+        {
+            "message": "Attendant created successfully.",
+            "id": attendant.id,
+        }
+    )

config/settings.py

@@ -22,14 +22,14 @@
 # See https://docs.djangoproject.com/en/5.0/howto/deployment/checklist/
 
 # SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = os.getenv(
-    "DJANGO_SECRET_KEY",
-    "django-insecure-w^mv=r_(x-se8p#@i*dxfu1^*8$fci+116it+fkj*nx!o2h*r1",
-)
+SECRET_KEY = os.getenv("DJANGO_SECRET_KEY")
+assert SECRET_KEY, "DJANGO_SECRET_KEY env variable is required"
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = os.getenv("DJANGO_DEBUG", "False").lower() == "true"
 
 ALLOWED_HOSTS = os.getenv("DJANGO_HOSTS", "*").split(",")
+if ALLOWED_HOSTS[0] != "*":
+    CSRF_TRUSTED_ORIGINS = [f"https://{host}" for host in ALLOWED_HOSTS]
 
 
 # Application definition