Merge remote-tracking branch 'origin/main'

2025-12-20 08:11:08 -05:00 · 2024-10-29 14:58:00 -04:00
parent 3054209646 e00ea42c47
commit b02974f64e
17 changed files with 234 additions and 33 deletions
--- a/accounts/pycache/urls.cpython-312.pyc
+++ b/accounts/pycache/urls.cpython-312.pyc
--- a/accounts/pycache/views.cpython-312.pyc
+++ b/accounts/pycache/views.cpython-312.pyc
--- a/accounts/mixins.py
+++ b/accounts/mixins.py
@@ -0,0 +1,28 @@
+import requests
+from django.conf import settings
+from django.core.exceptions import ValidationError
+
+class TurnstileMixin:
+    """
+    Mixin to handle Cloudflare Turnstile validation.
+    """
+    def validate_turnstile(self, request):
+        """
+        Validate the Turnstile response token.
+        """
+        token = request.POST.get('cf-turnstile-response')
+        if not token:
+            raise ValidationError('Please complete the Turnstile challenge.')
+
+        # Verify the token with Cloudflare
+        data = {
+            'secret': settings.TURNSTILE_SECRET_KEY,
+            'response': token,
+            'remoteip': request.META.get('REMOTE_ADDR'),
+        }
+
+        response = requests.post(settings.TURNSTILE_VERIFY_URL, data=data)
+        result = response.json()
+
+        if not result.get('success'):
+            raise ValidationError('Turnstile validation failed. Please try again.')
--- a/accounts/templatetags/init.py
+++ b/accounts/templatetags/init.py
--- a/accounts/templatetags/turnstile_tags.py
+++ b/accounts/templatetags/turnstile_tags.py
@@ -0,0 +1,14 @@
+from django import template
+from django.conf import settings
+
+register = template.Library()
+
+@register.inclusion_tag('accounts/turnstile_widget.html')
+def turnstile_widget():
+    """
+    Template tag to render the Cloudflare Turnstile widget.
+    Usage: {% load turnstile_tags %}{% turnstile_widget %}
+    """
+    return {
+        'site_key': settings.TURNSTILE_SITE_KEY
+    }
--- a/accounts/urls.py
+++ b/accounts/urls.py
@@ -1,13 +1,17 @@
 from django.urls import path
 from django.contrib.auth import views as auth_views
+from allauth.account.views import LogoutView
 from . import views

 app_name = 'accounts'

 urlpatterns = [
+    # Override allauth's login and signup views with our Turnstile-enabled versions
+    path('login/', views.CustomLoginView.as_view(), name='account_login'),
+    path('signup/', views.CustomSignupView.as_view(), name='account_signup'),
+    
    # Authentication views
-    path('login/', auth_views.LoginView.as_view(template_name='accounts/login.html'), name='login'),
-    path('logout/', auth_views.LogoutView.as_view(), name='logout'),
+    path('logout/', LogoutView.as_view(), name='logout'),
    path('password_change/', auth_views.PasswordChangeView.as_view(), name='password_change'),
    path('password_change/done/', auth_views.PasswordChangeDoneView.as_view(), name='password_change_done'),
    path('password_reset/', auth_views.PasswordResetView.as_view(), name='password_reset'),
--- a/accounts/views.py
+++ b/accounts/views.py
@@ -4,6 +4,7 @@ from django.shortcuts import get_object_or_404, redirect, render
 from django.contrib.auth.decorators import login_required
 from django.contrib.auth.mixins import LoginRequiredMixin
 from django.contrib import messages
+from django.core.exceptions import ValidationError
 from allauth.socialaccount.providers.google.views import GoogleOAuth2Adapter
 from allauth.socialaccount.providers.discord.views import DiscordOAuth2Adapter
 from allauth.socialaccount.providers.oauth2.client import OAuth2Client
@@ -20,9 +21,29 @@ from django.urls import reverse
 from accounts.models import User, PasswordReset
 from reviews.models import Review
 from email_service.services import EmailService
+from allauth.account.views import LoginView, SignupView
+from .mixins import TurnstileMixin

 User = get_user_model()

+class CustomLoginView(TurnstileMixin, LoginView):
+    def form_valid(self, form):
+        try:
+            self.validate_turnstile(self.request)
+        except ValidationError as e:
+            form.add_error(None, str(e))
+            return self.form_invalid(form)
+        return super().form_valid(form)
+
+class CustomSignupView(TurnstileMixin, SignupView):
+    def form_valid(self, form):
+        try:
+            self.validate_turnstile(self.request)
+        except ValidationError as e:
+            form.add_error(None, str(e))
+            return self.form_invalid(form)
+        return super().form_valid(form)
+
@login_required
 def user_redirect_view(request):
    """Redirect /user/ to the logged-in user's profile"""
--- a/assets/css/src/input.css
+++ b/assets/css/src/input.css
@@ -55,6 +55,23 @@
        @apply mt-2 text-sm text-red-600 dark:text-red-400;
    }

+    /* Status Badge Styles */
+    .status-badge {
+        @apply inline-flex items-center px-3 py-1 text-sm font-medium rounded-full;
+    }
+
+    .status-operating {
+        @apply text-green-800 bg-green-100 dark:bg-green-800/30 dark:text-green-100 dark:ring-1 dark:ring-green-400/30;
+    }
+
+    .status-closed {
+        @apply text-red-800 bg-red-100 dark:bg-red-800/30 dark:text-red-100 dark:ring-1 dark:ring-red-400/30;
+    }
+
+    .status-construction {
+        @apply text-yellow-800 bg-yellow-100 dark:bg-yellow-800/30 dark:text-yellow-100 dark:ring-1 dark:ring-yellow-400/30;
+    }
+
    /* Auth Card Styles */
    .auth-card {
        @apply w-full max-w-md p-8 mx-auto border shadow-xl bg-white/90 dark:bg-gray-800/90 rounded-2xl backdrop-blur-sm border-gray-200/50 dark:border-gray-700/50;
--- a/static/css/tailwind.css
+++ b/static/css/tailwind.css
@@ -1749,6 +1749,72 @@ select {
  color: rgb(248 113 113 / var(--tw-text-opacity));
 }

+/* Status Badge Styles */
+
+.status-badge {
+  display: inline-flex;
+  align-items: center;
+  border-radius: 9999px;
+  padding-left: 0.75rem;
+  padding-right: 0.75rem;
+  padding-top: 0.25rem;
+  padding-bottom: 0.25rem;
+  font-size: 0.875rem;
+  line-height: 1.25rem;
+  font-weight: 500;
+}
+
+.status-operating {
+  --tw-bg-opacity: 1;
+  background-color: rgb(220 252 231 / var(--tw-bg-opacity));
+  --tw-text-opacity: 1;
+  color: rgb(22 101 52 / var(--tw-text-opacity));
+}
+
+.status-operating:is(.dark *) {
+  background-color: rgb(22 101 52 / 0.3);
+  --tw-text-opacity: 1;
+  color: rgb(220 252 231 / var(--tw-text-opacity));
+  --tw-ring-offset-shadow: var(--tw-ring-inset) 0 0 0 var(--tw-ring-offset-width) var(--tw-ring-offset-color);
+  --tw-ring-shadow: var(--tw-ring-inset) 0 0 0 calc(1px + var(--tw-ring-offset-width)) var(--tw-ring-color);
+  box-shadow: var(--tw-ring-offset-shadow), var(--tw-ring-shadow), var(--tw-shadow, 0 0 #0000);
+  --tw-ring-color: rgb(74 222 128 / 0.3);
+}
+
+.status-closed {
+  --tw-bg-opacity: 1;
+  background-color: rgb(254 226 226 / var(--tw-bg-opacity));
+  --tw-text-opacity: 1;
+  color: rgb(153 27 27 / var(--tw-text-opacity));
+}
+
+.status-closed:is(.dark *) {
+  background-color: rgb(153 27 27 / 0.3);
+  --tw-text-opacity: 1;
+  color: rgb(254 226 226 / var(--tw-text-opacity));
+  --tw-ring-offset-shadow: var(--tw-ring-inset) 0 0 0 var(--tw-ring-offset-width) var(--tw-ring-offset-color);
+  --tw-ring-shadow: var(--tw-ring-inset) 0 0 0 calc(1px + var(--tw-ring-offset-width)) var(--tw-ring-color);
+  box-shadow: var(--tw-ring-offset-shadow), var(--tw-ring-shadow), var(--tw-shadow, 0 0 #0000);
+  --tw-ring-color: rgb(248 113 113 / 0.3);
+}
+
+.status-construction {
+  --tw-bg-opacity: 1;
+  background-color: rgb(254 249 195 / var(--tw-bg-opacity));
+  --tw-text-opacity: 1;
+  color: rgb(133 77 14 / var(--tw-text-opacity));
+}
+
+.status-construction:is(.dark *) {
+  background-color: rgb(133 77 14 / 0.3);
+  --tw-text-opacity: 1;
+  color: rgb(254 249 195 / var(--tw-text-opacity));
+  --tw-ring-offset-shadow: var(--tw-ring-inset) 0 0 0 var(--tw-ring-offset-width) var(--tw-ring-offset-color);
+  --tw-ring-shadow: var(--tw-ring-inset) 0 0 0 calc(1px + var(--tw-ring-offset-width)) var(--tw-ring-color);
+  box-shadow: var(--tw-ring-offset-shadow), var(--tw-ring-shadow), var(--tw-shadow, 0 0 #0000);
+  --tw-ring-color: rgb(250 204 21 / 0.3);
+}
+
 /* Auth Card Styles */

 .auth-card {
@@ -2521,6 +2587,10 @@ select {
  background-color: rgb(254 249 195 / 0.9);
 }

+.bg-white\/80 {
+  background-color: rgb(255 255 255 / 0.8);
+}
+
 .bg-gradient-to-br {
  background-image: linear-gradient(to bottom right, var(--tw-gradient-stops));
 }
@@ -2980,6 +3050,11 @@ select {
  background-color: rgb(79 70 229 / 0.1);
 }

+.hover\:bg-gray-200:hover {
+  --tw-bg-opacity: 1;
+  background-color: rgb(229 231 235 / var(--tw-bg-opacity));
+}
+
 .hover\:from-primary\/90:hover {
  --tw-gradient-from: rgb(79 70 229 / 0.9) var(--tw-gradient-from-position);
  --tw-gradient-to: rgb(79 70 229 / 0) var(--tw-gradient-to-position);
@@ -3133,6 +3208,10 @@ select {
  background-color: rgb(133 77 14 / 0.3);
 }

+.dark\:bg-gray-700\/80:is(.dark *) {
+  background-color: rgb(55 65 81 / 0.8);
+}
+
 .dark\:from-gray-950:is(.dark *) {
  --tw-gradient-from: #030712 var(--tw-gradient-from-position);
  --tw-gradient-to: rgb(3 7 18 / 0) var(--tw-gradient-to-position);
@@ -3231,6 +3310,11 @@ select {
  background-color: rgb(79 70 229 / 0.2);
 }

+.dark\:hover\:bg-gray-600:hover:is(.dark *) {
+  --tw-bg-opacity: 1;
+  background-color: rgb(75 85 99 / var(--tw-bg-opacity));
+}
+
 .dark\:hover\:text-blue-300:hover:is(.dark *) {
  --tw-text-opacity: 1;
  color: rgb(147 197 253 / var(--tw-text-opacity));
--- a/templates/account/login.html
+++ b/templates/account/login.html
@@ -2,6 +2,7 @@
 {% load i18n %}
 {% load account socialaccount %}
 {% load static %}
+{% load turnstile_tags %}

 {% block title %}Login - ThrillWiki{% endblock %}

@@ -88,6 +89,8 @@
                    </div>
                </div>

+                {% turnstile_widget %}
+
                {% if redirect_field_value %}
                    <input type="hidden" name="{{ redirect_field_name }}" value="{{ redirect_field_value }}">
                {% endif %}
--- a/templates/account/signup.html
+++ b/templates/account/signup.html
@@ -2,6 +2,7 @@
 {% load i18n %}
 {% load account socialaccount %}
 {% load static %}
+{% load turnstile_tags %}

 {% block title %}Register - ThrillWiki{% endblock %}

@@ -134,6 +135,8 @@
          {% endif %}
        </div>

+            {% turnstile_widget %}
+
        {% if redirect_field_value %}
        <input
          type="hidden"
--- a/templates/accounts/turnstile_widget.html
+++ b/templates/accounts/turnstile_widget.html
@@ -0,0 +1,2 @@
+<script src="https://challenges.cloudflare.com/turnstile/v0/api.js" async defer></script>
+<div class="cf-turnstile" data-sitekey="{{ site_key }}" data-theme="light"></div>
--- a/templates/base/base.html
+++ b/templates/base/base.html
@@ -1,6 +1,6 @@
 {% load static %}
 <!DOCTYPE html>
-<html lang="en" class="no-js">
+<html lang="en">
 <head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
@@ -11,9 +11,14 @@
    
    <!-- Prevent flash of wrong theme -->
    <script>
-        // Immediately remove 'no-js' class and add initial theme class
-        document.documentElement.classList.remove('no-js');
-        if (localStorage.theme === 'dark' || (!localStorage.theme && window.matchMedia('(prefers-color-scheme: dark)').matches)) {
+        // Get theme from localStorage or system preference
+        let theme = localStorage.getItem('theme');
+        if (!theme) {
+            theme = window.matchMedia('(prefers-color-scheme: dark)').matches ? 'dark' : 'light';
+            localStorage.setItem('theme', theme);
+        }
+        // Apply theme immediately before page loads
+        if (theme === 'dark') {
            document.documentElement.classList.add('dark');
        }
    </script>
@@ -49,30 +54,44 @@
                            this.setTheme(e.matches ? 'dark' : 'light');
                        }
                    });
+
+                    // Set initial theme icon state
+                    this.updateThemeIcon();
                });
            },

            setTheme(theme) {
-                // Force a repaint by temporarily adding a class
-                document.documentElement.classList.add('theme-transitioning');
-                
                if (theme === 'dark') {
                    document.documentElement.classList.add('dark');
                } else {
                    document.documentElement.classList.remove('dark');
                }
                
-                localStorage.theme = theme;
-                
-                // Remove the transition class after a short delay
-                setTimeout(() => {
-                    document.documentElement.classList.remove('theme-transitioning');
-                }, 100);
+                localStorage.setItem('theme', theme);
+                this.updateThemeIcon();
            },

            toggleTheme() {
                const isDark = document.documentElement.classList.contains('dark');
                this.setTheme(isDark ? 'light' : 'dark');
+            },
+
+            updateThemeIcon() {
+                const isDark = document.documentElement.classList.contains('dark');
+                const sunIcon = document.querySelector('#theme-toggle .fa-sun');
+                const moonIcon = document.querySelector('#theme-toggle .fa-moon');
+                
+                if (sunIcon && moonIcon) {
+                    // Show sun icon in dark mode (to indicate you can switch to light)
+                    // Show moon icon in light mode (to indicate you can switch to dark)
+                    if (isDark) {
+                        sunIcon.classList.remove('hidden');
+                        moonIcon.classList.add('hidden');
+                    } else {
+                        sunIcon.classList.add('hidden');
+                        moonIcon.classList.remove('hidden');
+                    }
+                }
            }
        };

@@ -81,24 +100,24 @@
    </script>

    <style>
-        /* Prevent flash of wrong theme */
-        .no-js {
-            visibility: hidden;
-        }
-        
        /* Smooth theme transitions */
        :root {
            --theme-transition-duration: 200ms;
        }
        
-        .theme-transitioning * {
-            transition: none !important;
-        }
-        
        body {
            transition: background-color var(--theme-transition-duration) ease-in-out,
                      color var(--theme-transition-duration) ease-in-out;
        }
+
+        /* Ensure theme toggle button has consistent size */
+        #theme-toggle {
+            width: 40px;
+            height: 40px;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+        }
    </style>
 </head>
 <body class="flex flex-col min-h-screen text-gray-900 bg-gradient-to-br from-white via-blue-50 to-indigo-50 dark:from-gray-950 dark:via-indigo-950 dark:to-purple-950 dark:text-white">
@@ -141,9 +160,9 @@
                <!-- Right Side Menu -->
                <div class="flex items-center space-x-6">
                    <!-- Theme Toggle -->
-                    <button id="theme-toggle" class="p-2.5 rounded-lg bg-gray-100 dark:bg-gray-700 text-gray-600 dark:text-gray-300 hover:bg-primary/10 dark:hover:bg-primary/20 transition-all shadow-sm border border-gray-200/50 dark:border-gray-600/50">
-                        <i class="hidden text-lg fas fa-sun dark:inline"></i>
-                        <i class="text-lg fas fa-moon dark:hidden"></i>
+                    <button id="theme-toggle" class="inline-flex items-center justify-center p-2 text-gray-500 transition-all border border-gray-200 rounded-lg bg-white/80 dark:bg-gray-700/80 dark:text-gray-400 hover:bg-gray-50 dark:hover:bg-gray-600 dark:border-gray-600">
+                        <i class="hidden text-lg fas fa-sun"></i>
+                        <i class="hidden text-lg fas fa-moon"></i>
                    </button>

                    <!-- User Menu -->
--- a/thrillwiki/pycache/settings.cpython-312.pyc
+++ b/thrillwiki/pycache/settings.cpython-312.pyc
--- a/thrillwiki/pycache/urls.cpython-312.pyc
+++ b/thrillwiki/pycache/urls.cpython-312.pyc
--- a/thrillwiki/settings.py
+++ b/thrillwiki/settings.py
@@ -207,3 +207,8 @@ AUTH_USER_MODEL = 'accounts.User'
 TAILWIND_CLI_CONFIG_FILE = os.path.join(BASE_DIR, 'tailwind.config.js')
 TAILWIND_CLI_SRC_CSS = os.path.join(BASE_DIR, 'assets/css/src/input.css')
 TAILWIND_CLI_DIST_CSS = os.path.join(BASE_DIR, 'static/css/tailwind.css')
+
+# Cloudflare Turnstile settings
+TURNSTILE_SITE_KEY = '0x4AAAAAAAyqVp3RjccrC9Kz'
+TURNSTILE_SECRET_KEY = '0x4AAAAAAAyqVrQolYsrAFGJ39PXHJ_HQzY'
+TURNSTILE_VERIFY_URL = 'https://challenges.cloudflare.com/turnstile/v0/siteverify'
--- a/thrillwiki/urls.py
+++ b/thrillwiki/urls.py
@@ -19,8 +19,12 @@ urlpatterns = [
    path('terms/', TemplateView.as_view(template_name='pages/terms.html'), name='terms'),
    path('privacy/', TemplateView.as_view(template_name='pages/privacy.html'), name='privacy'),
    
-    # Authentication URLs
-    path('accounts/', include('allauth.urls')),  # This includes social auth URLs
+    # Custom authentication URLs first (to override allauth defaults)
+    path('accounts/', include('accounts.urls')),
+    
+    # Default allauth URLs (for social auth and other features)
+    path('accounts/', include('allauth.urls')),
+    
    path('accounts/email-required/', accounts_views.email_required, name='email_required'),
    
    # User profile URLs
@@ -31,9 +35,6 @@ urlpatterns = [
    
    # Redirect /user/ to the user's profile if logged in
    path('user/', accounts_views.user_redirect_view, name='user_redirect'),
-    
-    # Include remaining accounts URLs
-    path('', include('accounts.urls')),
 ]

 # Serve static files in development