quasarr 1.32.0__py3-none-any.whl → 2.1.0__py3-none-any.whl

quasarr/downloads/linkcrypters/hide.py

@@ -12,22 +12,58 @@ from quasarr.providers.log import info, debug
 from quasarr.providers.statistics import StatsHelper
 
 
-def unhide_links(shared_state, url):
+def unhide_links(shared_state, url, session):
     try:
         links = []
 
-        match = re.search(r"container/([a-z0-9\-]+)", url)
+        # Support both formats:
+        # - https://hide.cx/container/{id}
+        # - https://hide.cx/fc/Container/{id}.html
+        match = re.search(
+            r"/(?:fc/)?container/([a-z0-9A-Z\-]+)(?:\.html)?",
+            url,
+            re.IGNORECASE,
+        )
+
         if not match:
             info(f"Invalid hide.cx URL: {url}")
             return []
 
         container_id = match.group(1)
+        is_fc = "/fc/" in url.lower()
+        # resolve fc foreign ID to canonical container ID
+        if is_fc:
+            headers = {
+                "User-Agent": shared_state.values["user_agent"],
+                "Accept": "application/json",
+                "X-Requested-With": "XMLHttpRequest",
+            }
+
+            info(f"Resolving hide.cx foreign container ID: {container_id}")
+            resolve_url = f"https://api.hide.cx/fc/Container/{container_id}"
+            resp = session.get(resolve_url, headers=headers, timeout=30)
+
+            try:
+                resolved = resp.json()
+            except Exception:
+                debug(f"Failed to resolve foreign container {container_id}")
+                return []
+
+            canonical_id = resolved.get("id")
+            if not canonical_id:
+                debug(f"No canonical container ID found for {container_id}")
+                return []
+
+            container_id = canonical_id
+            debug(f"Resolved to canonical container ID: {container_id}")
+
+        headers = {'User-Agent': shared_state.values["user_agent"]}
         info(f"Fetching hide.cx container with ID: {container_id}")
 
         headers = {'User-Agent': shared_state.values["user_agent"]}
 
         container_url = f"https://api.hide.cx/containers/{container_id}"
-        response = requests.get(container_url, headers=headers)
+        response = session.get(container_url, headers=headers)
         data = response.json()
 
         link_ids = [link.get("id") for link in data.get("links", []) if link.get("id")]
@@ -39,7 +75,7 @@ def unhide_links(shared_state, url):
         def fetch_link(link_id):
             debug(f"Fetching hide.cx link with ID: {link_id}")
             link_url = f"https://api.hide.cx/containers/{container_id}/links/{link_id}"
-            link_data = requests.get(link_url, headers=headers).json()
+            link_data = session.get(link_url, headers=headers).json()
             return link_data.get("url")
 
         # Process links in batches of 10
@@ -103,12 +139,15 @@ def decrypt_links_if_hide(shared_state: Any, items: List[List[str]]) -> Dict[str
                 resp = session.get(original_url, allow_redirects=True, timeout=10)
 
             final_url = resp.url
-            if "hide.cx" in final_url:
+
+            # accept hide.cx even if it did not redirect
+            if "hide.cx" in final_url or "hide.cx" in original_url:
                 debug(f"Identified hide.cx link: {final_url}")
                 hide_urls.append(final_url)
             else:
                 debug(f"Not a hide.cx link (skipped): {final_url}")
 
+
         except requests.RequestException as e:
             info(f"Error resolving URL {original_url}: {e}")
             continue
@@ -121,7 +160,7 @@ def decrypt_links_if_hide(shared_state: Any, items: List[List[str]]) -> Dict[str
     decrypted_links: List[str] = []
     for url in hide_urls:
         try:
-            links = unhide_links(shared_state, url)
+            links = unhide_links(shared_state, url, session)
             if not links:
                 debug(f"No links decrypted for {url}")
                 continue

quasarr/providers/auth.py

@@ -0,0 +1,250 @@
+# -*- coding: utf-8 -*-
+# Quasarr
+# Project by https://github.com/rix1337
+
+import base64
+import hashlib
+import hmac
+import os
+import time
+
+from bottle import request, response, redirect
+
+import quasarr.providers.html_images as images
+from quasarr.providers.version import get_version
+
+# Auth configuration from environment
+AUTH_USER = os.environ.get('USER', '')
+AUTH_PASS = os.environ.get('PASS', '')
+AUTH_TYPE = os.environ.get('AUTH', '').lower()
+
+# Cookie settings
+COOKIE_NAME = 'quasarr_session'
+COOKIE_MAX_AGE = 30 * 24 * 60 * 60  # 30 days
+
+
+def is_auth_enabled():
+    """Check if authentication is enabled (both USER and PASS set)."""
+    return bool(AUTH_USER and AUTH_PASS)
+
+
+def is_form_auth():
+    """Check if form-based auth is enabled."""
+    return AUTH_TYPE == 'form'
+
+
+def _sign_cookie(user, expiry):
+    """Create HMAC signature for cookie."""
+    msg = f"{user}:{expiry}".encode()
+    return hmac.new(AUTH_PASS.encode(), msg, hashlib.sha256).hexdigest()
+
+
+def _create_session_cookie(user):
+    """Create a signed session cookie value."""
+    expiry = int(time.time()) + COOKIE_MAX_AGE
+    signature = _sign_cookie(user, expiry)
+    return f"{user}:{expiry}:{signature}"
+
+
+def _verify_session_cookie(cookie_value):
+    """Verify a session cookie. Returns True if valid."""
+    try:
+        parts = cookie_value.split(':')
+        if len(parts) != 3:
+            return False
+        user, expiry, signature = parts
+        expiry = int(expiry)
+        if time.time() > expiry:
+            return False
+        expected_sig = _sign_cookie(user, expiry)
+        return hmac.compare_digest(signature, expected_sig)
+    except:
+        return False
+
+
+def check_basic_auth():
+    """Check HTTP Basic Auth header. Returns True if valid."""
+    auth = request.headers.get('Authorization', '')
+    if not auth.startswith('Basic '):
+        return False
+    try:
+        decoded = base64.b64decode(auth[6:]).decode('utf-8')
+        user, passwd = decoded.split(':', 1)
+        return user == AUTH_USER and passwd == AUTH_PASS
+    except:
+        return False
+
+
+def check_form_auth():
+    """Check session cookie. Returns True if valid."""
+    cookie = request.get_cookie(COOKIE_NAME)
+    return cookie and _verify_session_cookie(cookie)
+
+
+def require_basic_auth():
+    """Send 401 response for Basic Auth."""
+    response.status = 401
+    response.set_header('WWW-Authenticate', 'Basic realm="Quasarr"')
+    return "Authentication required"
+
+
+def _render_login_page(error=None):
+    """Render login form page using Quasarr styling."""
+    error_html = f'<p style="color: #dc3545; margin-bottom: 1rem;"><b>{error}</b></p>' if error else ''
+    next_url = request.query.get('next', '/')
+
+    # Inline the centered HTML to avoid circular import
+    return f'''<html>
+    <head>
+        <meta charset="utf-8">
+        <meta name="viewport" content="width=device-width, initial-scale=1">
+        <title>Quasarr - Login</title>
+        <link rel="icon" href="{images.logo}" type="image/png">
+        <style>
+            :root {{
+                --bg-color: #ffffff;
+                --fg-color: #212529;
+                --card-bg: #ffffff;
+                --card-shadow: rgba(0, 0, 0, 0.1);
+                --primary: #0d6efd;
+                --secondary: #6c757d;
+                --spacing: 1rem;
+            }}
+            @media (prefers-color-scheme: dark) {{
+                :root {{
+                    --bg-color: #181a1b;
+                    --fg-color: #f1f1f1;
+                    --card-bg: #242526;
+                    --card-shadow: rgba(0, 0, 0, 0.5);
+                }}
+            }}
+            *, *::before, *::after {{ box-sizing: border-box; }}
+            html, body {{
+                margin: 0; padding: 0; width: 100%; height: 100%;
+                background-color: var(--bg-color); color: var(--fg-color);
+                font-family: system-ui, -apple-system, 'Segoe UI', Roboto, sans-serif;
+                line-height: 1.6; display: flex; flex-direction: column; min-height: 100vh;
+            }}
+            .outer {{ flex: 1; display: flex; justify-content: center; align-items: center; padding: var(--spacing); }}
+            .inner {{
+                background-color: var(--card-bg); border-radius: 1rem;
+                box-shadow: 0 0.5rem 1.5rem var(--card-shadow);
+                padding: calc(var(--spacing) * 2); text-align: center; width: 100%; max-width: 400px;
+            }}
+            .logo {{ height: 64px; width: 64px; vertical-align: middle; margin-right: 0.5rem; }}
+            h1 {{ margin: 0 0 1rem 0; font-size: 1.75rem; }}
+            h2 {{ margin: 0 0 1.5rem 0; font-size: 1.25rem; font-weight: 500; }}
+            label {{ display: block; text-align: left; margin-bottom: 0.25rem; font-weight: 500; }}
+            input[type="text"], input[type="password"] {{
+                width: 100%; padding: 0.5rem; margin-bottom: 1rem;
+                border: 1px solid var(--secondary); border-radius: 0.5rem;
+                font-size: 1rem; background: var(--card-bg); color: var(--fg-color);
+            }}
+            .btn-primary {{
+                background-color: var(--primary); color: #fff; border: 1.5px solid #0856c7;
+                padding: 0.5rem 1.5rem; font-size: 1rem; border-radius: 0.5rem;
+                font-weight: 500; cursor: pointer; width: 100%;
+            }}
+            .btn-primary:hover {{ background-color: #0b5ed7; }}
+            footer {{ text-align: center; font-size: 0.75rem; color: var(--secondary); padding: 0.5rem 0; }}
+        </style>
+    </head>
+    <body>
+        <div class="outer">
+            <div class="inner">
+                <h1><img src="{images.logo}" class="logo" alt="Quasarr"/>Quasarr</h1>
+                {error_html}
+                <form method="post" action="/login">
+                    <input type="hidden" name="next" value="{next_url}">
+                    <label for="username">Username</label>
+                    <input type="text" id="username" name="username" autocomplete="username" required>
+                    <label for="password">Password</label>
+                    <input type="password" id="password" name="password" autocomplete="current-password" required>
+                    <button type="submit" class="btn-primary">Login</button>
+                </form>
+            </div>
+        </div>
+        <footer>Quasarr v.{get_version()}</footer>
+    </body>
+    </html>'''
+
+
+def _handle_login_post():
+    """Handle login form submission."""
+    username = request.forms.get('username', '')
+    password = request.forms.get('password', '')
+    next_url = request.forms.get('next', '/')
+
+    if username == AUTH_USER and password == AUTH_PASS:
+        cookie_value = _create_session_cookie(username)
+        response.set_cookie(COOKIE_NAME, cookie_value, max_age=COOKIE_MAX_AGE, path='/', httponly=True)
+        redirect(next_url)
+    else:
+        return _render_login_page(error="Invalid username or password")
+
+
+def _handle_logout():
+    """Handle logout - clear cookie and redirect to login."""
+    response.delete_cookie(COOKIE_NAME, path='/')
+    redirect('/login')
+
+
+def show_logout_link():
+    """Returns True if logout link should be shown (form auth enabled and authenticated)."""
+    return is_auth_enabled() and is_form_auth() and check_form_auth()
+
+
+def add_auth_routes(app):
+    """Add login/logout routes to a Bottle app (for form auth only)."""
+    if not is_auth_enabled():
+        return
+
+    if is_form_auth():
+        @app.get('/login')
+        def login_get():
+            if check_form_auth():
+                redirect('/')
+            return _render_login_page()
+
+        @app.post('/login')
+        def login_post():
+            return _handle_login_post()
+
+        @app.get('/logout')
+        def logout():
+            return _handle_logout()
+
+
+def add_auth_hook(app, whitelist_prefixes=None):
+    """Add authentication hook to a Bottle app.
+
+    Args:
+        app: Bottle application
+        whitelist_prefixes: List of path prefixes to skip auth (e.g., ['/api/', '/sponsors_helper/'])
+    """
+    if whitelist_prefixes is None:
+        whitelist_prefixes = []
+
+    @app.hook('before_request')
+    def auth_hook():
+        if not is_auth_enabled():
+            return
+
+        path = request.path
+
+        # Always allow login/logout
+        if path in ['/login', '/logout']:
+            return
+
+        # Check whitelist prefixes
+        for prefix in whitelist_prefixes:
+            if path.startswith(prefix):
+                return
+
+        # Check authentication
+        if is_form_auth():
+            if not check_form_auth():
+                redirect(f'/login?next={path}')
+        else:
+            if not check_basic_auth():
+                return require_basic_auth()

quasarr/providers/html_templates.py

@@ -6,7 +6,7 @@ import quasarr.providers.html_images as images
 from quasarr.providers.version import get_version
 
 
-def render_centered_html(inner_content):
+def render_centered_html(inner_content, footer_content=""):
     head = '''
     <head>
         <meta charset="utf-8">
@@ -20,6 +20,7 @@ def render_centered_html(inner_content):
                 --fg-color: #212529;
                 --card-bg: #ffffff;
                 --card-shadow: rgba(0, 0, 0, 0.1);
+                --card-border: #dee2e6;
                 --primary: #0d6efd;
                 --secondary: #6c757d;
                 --code-bg: #f8f9fa;
@@ -27,21 +28,40 @@ def render_centered_html(inner_content):
                 --info-border: #2d5a2d;
                 --setup-border: var(--primary);
                 --divider-color: #dee2e6;
+                --border-color: #dee2e6;
                 --btn-subtle-bg: #e9ecef;
                 --btn-subtle-border: #ced4da;
+                --text-muted: #666;
+                --link-color: #0d6efd;
+                --success-color: #198754;
+                --success-bg: #d1e7dd;
+                --success-border: #a3cfbb;
+                --error-color: #dc3545;
+                --error-bg: #f8d7da;
+                --error-border: #f1aeb5;
             }
             @media (prefers-color-scheme: dark) {
                 :root {
                     --bg-color: #181a1b;
                     --fg-color: #f1f1f1;
-                    --card-bg: #242526;
+                    --card-bg: #2d3748;
                     --card-shadow: rgba(0, 0, 0, 0.5);
+                    --card-border: #4a5568;
                     --code-bg: #2c2f33;
                     --info-border: #4a8c4a;
                     --setup-border: var(--primary);
-                    --divider-color: #444;
+                    --divider-color: #4a5568;
+                    --border-color: #4a5568;
                     --btn-subtle-bg: #444;
                     --btn-subtle-border: #666;
+                    --text-muted: #a0aec0;
+                    --link-color: #63b3ed;
+                    --success-color: #68d391;
+                    --success-bg: #1c4532;
+                    --success-border: #276749;
+                    --error-color: #fc8181;
+                    --error-bg: #3d2d2d;
+                    --error-border: #c53030;
                 }
             }
             /* Info box styling */
@@ -66,6 +86,27 @@ def render_centered_html(inner_content):
                 margin-top: 0;
                 color: var(--setup-border);
             }
+            /* Status pill styling */
+            .status-pill {
+                display: inline-flex;
+                align-items: center;
+                gap: 6px;
+                padding: 6px 12px;
+                border-radius: 20px;
+                font-size: 0.9rem;
+                font-weight: 500;
+                margin: 8px 0;
+            }
+            .status-pill.success {
+                background: var(--success-bg);
+                color: var(--success-color);
+                border: 1px solid var(--success-border);
+            }
+            .status-pill.error {
+                background: var(--error-bg);
+                color: var(--error-color);
+                border: 1px solid var(--error-border);
+            }
             /* Subtle button styling (ghost style) */
             .btn-subtle {
                 background: transparent;
@@ -112,7 +153,7 @@ def render_centered_html(inner_content):
                 width: 100%;
                 padding: 0.5rem;
                 font-size: 1rem;
-                border: 1px solid #ced4da;
+                border: 1px solid var(--card-border);
                 border-radius: 0.5rem;
                 background-color: var(--card-bg);
                 color: var(--fg-color);
@@ -220,22 +261,36 @@ def render_centered_html(inner_content):
                 box-shadow: 0 2px 6px rgba(108, 117, 125, 0.4);
             }
             a {
-                color: var(--primary);
+                color: var(--link-color);
                 text-decoration: none;
             }
             a:hover {
-
+                text-decoration: underline;
             }
             /* footer styling */
             footer {
                 text-align: center;
                 font-size: 0.75rem;
-                color: var(--secondary);
+                color: var(--text-muted);
                 padding: 0.5rem 0;
             }
+            footer a {
+                color: var(--text-muted);
+                margin: 0 0;
+            }
+            footer a:hover {
+                color: var(--fg-color);
+            }
         </style>
     </head>'''
 
+    # Build footer content
+    version_text = f"Quasarr v.{get_version()}"
+    if footer_content:
+        footer_html = f"{footer_content} · {version_text}"
+    else:
+        footer_html = version_text
+
     body = f'''
     {head}
     <body>
@@ -245,7 +300,7 @@ def render_centered_html(inner_content):
             </div>
         </div>
         <footer>
-            Quasarr v.{get_version()}
+            {footer_html}
         </footer>
     </body>
     '''
@@ -260,14 +315,14 @@ def render_button(text, button_type="primary", attributes=None):
     return f'<button class="{cls}" {attr_str}>{text}</button>'
 
 
-def render_form(header, form="", script=""):
+def render_form(header, form="", script="", footer_content=""):
     content = f'''
     <h1><img src="{images.logo}" type="image/png" alt="Quasarr logo" class="logo"/>Quasarr</h1>
     <h2>{header}</h2>
     {form}
     {script}
     '''
-    return render_centered_html(content)
+    return render_centered_html(content, footer_content)
 
 
 def render_success(message, timeout=10, optional_text=""):