First test

.gitignore

@@ -0,0 +1,25 @@
+# macos
+.DS_Store
+
+# jupyter notebook server
+.ipynb_checkpoints/
+
+# various virtualenvs
+.venv/
+env/
+
+# compiled python files
+__pycache__/
+*.py[co]
+
+# backup files
+# *~
+
+# vs code
+*.code-workspace
+settings.json
+
+# custom folders
+_tmp/
+_soluzioni/
+.assets/

Dockerfile

@@ -0,0 +1,29 @@
+# Use the official Python 3.9 image
+FROM python:3.11
+
+# Set the working directory to /code
+WORKDIR /code
+
+# Copy the current directory contents into the container at /code
+COPY ./requirements.txt /code/requirements.txt
+
+# Install requirements.txt 
+RUN pip install --no-cache-dir --upgrade -r /code/requirements.txt
+
+# Set up a new user named "user" with user ID 1000
+RUN useradd -m -u 1000 user
+# Switch to the "user" user
+USER user
+# Set home to the user's home directory
+ENV HOME=/home/user \
+	PATH=/home/user/.local/bin:$PATH
+
+# Set the working directory to the user's home directory
+WORKDIR $HOME/app
+
+# Copy the current directory contents into the container at $HOME/app setting the owner to the user
+COPY --chown=user . $HOME/app
+
+# CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "7860"]
+CMD ["flask", "run", "--host=0.0.0.0"]
+# CMD ["python", "-m", "flask", "run", "--host=0.0.0.0"]

app.py

@@ -0,0 +1,115 @@
+import os
+from flask import Flask, render_template, request, session, redirect, flash, url_for, jsonify
+from flask_sqlalchemy import SQLAlchemy
+from markupsafe import escape
+
+BASE_DIR_PATH = os.path.abspath(os.path.dirname(__file__))
+DATABASE_PATH = os.path.join(BASE_DIR_PATH, 'db.sqlite3')
+
+app = Flask(__name__)
+app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///'+DATABASE_PATH
+app.config['SECRET_KEY'] = 'mysecretkey'
+db = SQLAlchemy(app)
+
+class Utente(db.Model):
+    id = db.Column(db.Integer, primary_key=True, autoincrement=True)
+    nickname = db.Column(db.String(80), unique=True, nullable=False)
+    username = db.Column(db.String(80), unique=True, nullable=False)
+    password = db.Column(db.String(30), nullable=False)
+    # messaggi = db.relationship('Messaggio', backref=db.backref('user', lazy='dynamic'))
+    # --- OR ---
+    messaggi = db.relationship('Messaggio', back_populates='user', lazy='dynamic')
+
+class Messaggio(db.Model):
+    id = db.Column(db.Integer, primary_key=True)
+    user_id = db.Column(db.Integer, db.ForeignKey('utente.id'), nullable=False)
+    messaggio = db.Column(db.Text, nullable=False)
+    timestamp = db.Column(db.DateTime, default=db.func.now(), nullable=False)
+    # user = db.relationship('Utente', backref=db.backref('messaggi', lazy='dynamic'))
+    # --- OR ---
+    user = db.relationship('Utente', back_populates='messaggi')
+
+
+@app.route('/')
+def home():
+    if 'user_id' in session:
+        user = db.session.query(Utente).get(session['user_id'])
+        return render_template('home.html', user=user)
+    return render_template('home.html')
+
+
+@app.route('/guestbook')
+def guestbook():
+    if 'user_id' not in session:
+        return redirect(url_for('login'))
+    return render_template('guestbook.html')
+
+@app.route('/api/guestbook', methods=['GET', 'POST'])
+def api_guestbook():
+    if 'user_id' not in session:
+        return jsonify({'error': 'Accesso non autorizzato.'}), 401
+
+    if request.method == 'POST':
+        messaggio = request.json.get('messaggio')
+        if not messaggio:
+            return jsonify({'error': 'Il messaggio non può essere vuoto!'}), 400
+        new_message = Messaggio(user_id=session['user_id'], messaggio=escape(messaggio))
+        db.session.add(new_message)
+        db.session.commit()
+        return jsonify({'success': True}), 201
+
+    messages = Messaggio.query.order_by(Messaggio.timestamp.desc()).all()
+    response = [
+        {'nickname': message.user.nickname, 'messaggio': message.messaggio} 
+        for message in messages
+    ]
+    return jsonify(response), 200
+
+
+
+@app.route('/signup', methods=['GET', 'POST'])
+def signup():
+    if request.method == 'POST':
+        nickname = request.form.get('nickname')
+        username = request.form.get('username')
+        password = request.form.get('password')
+        if not nickname or not username or not password:
+            flash('Tutti i campi sono obbligatori!')
+            return redirect(url_for('signup'))
+        if Utente.query.filter_by(username=username).first() or Utente.query.filter_by(nickname=nickname).first():
+            flash("Il nickname o l'username sono già in uso!")
+            return redirect(url_for('signup'))
+        new_user = Utente(nickname=nickname, username=username, password=password)
+        db.session.add(new_user)
+        db.session.commit()
+        flash('Registrazione effettuata con successo!')
+        return redirect(url_for('login'))
+    return render_template('signup.html')
+
+
+@app.route('/login', methods=['GET', 'POST'])
+def login():
+    if request.method == 'POST':
+        username = request.form['username']
+        password = request.form['password']
+        user = Utente.query.filter_by(username=username, password=password).first()
+        if user:
+            session['user_id'] = user.id
+            flash('Login riuscito!')
+            return redirect(url_for('guestbook'))
+        else:
+            flash('Credenziali non valide!')
+            return redirect(url_for('login'))
+    return render_template('login.html')
+
+@app.route('/logout')
+def logout():
+    session.pop('user_id', None)
+    flash('Logout effettuato con successo!')
+    return redirect(url_for('home'))
+
+
+if __name__ == '__main__':
+    with app.app_context():
+        db.create_all()
+    app.run(debug=True)

requirements.txt

@@ -0,0 +1,2 @@
+Flask
+Flask-SQLAlchemy

templates/guestbook.html

@@ -0,0 +1,71 @@
+<!doctype html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Guestbook</title>
+</head>
+
+<body>
+    <h2>Guestbook</h2>
+
+    <!-- Mostra i messaggi flash -->
+    {% include 'includes/flash.html' %}
+
+    <form id="message-form">
+        <textarea id="message" name="message" required></textarea><br>
+        <button type="submit">Submit</button>
+    </form>
+
+    <h3>Messages:</h3>
+
+    <ul id="messages-list"></ul>
+
+    <script>
+        // Azioni da eseguire quando il DOM è pronto
+        document.addEventListener('DOMContentLoaded', () => {
+            // Legge e mostra i messaggi al caricamento della pagina
+            loadMessages();
+            // Aggiunge un event listener al pulsante di invio del messaggio
+            document.getElementById('message-form').addEventListener('submit', sendMessage);
+        });
+
+        // Funzione per inviare un messaggio al guestbook
+        async function sendMessage(event) {
+            event.preventDefault();
+            let messageTextarea = document.getElementById('message')
+            const message = messageTextarea.value;
+            const response = await fetch('/api/guestbook', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({messaggio: message})
+            });
+            const result = await response.json();
+            if (result.success) {
+                loadMessages();
+                messageTextarea.value = '';
+                // document.getElementById('message-form').reset();
+            } else if (result.error){
+                alert(result.error);
+            } else {
+                alert("Errore sconosciuto durante l'invio del messaggio.");
+            }
+        }
+
+        // Funzione per leggere i messaggi dal guestbook
+        async function loadMessages() {
+            const response = await fetch('/api/guestbook');
+            const messages = await response.json();
+            const messagesList = document.getElementById('messages-list');
+            messagesList.innerHTML = '';
+            messages.forEach(message => {
+                const li = document.createElement('li');
+                li.textContent = `${message.nickname}: ${message.messaggio}`;
+                messagesList.appendChild(li);
+            });
+        }
+    </script>
+</body>
+
+</html>

templates/home.html

@@ -0,0 +1,29 @@
+<!doctype html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Home</title>
+</head>
+
+<body>
+    <h2>Home</h2>
+    
+    <!-- Mostra i messaggi flash -->
+    {% include 'includes/flash.html' %}
+
+    {% if 'user_id' in session %}
+        <p>Benvenuto, {{ user.username }} detto {{ user.nickname }}!</p>
+        <p><a href="{{ url_for('guestbook') }}">Vai al Guestbook</a>.</p>
+        <p>Oppure <a href="{{ url_for('logout') }}">fai il Logout</a>.</p>
+    {% else %}
+        <p>
+            Per accedere fai il <a href="{{ url_for('login') }}">Login</a>
+            oppure, se non hai un account, fai il <a href="{{ url_for('signup') }}">Sign Up</a>
+        </p>
+    {% endif %}
+
+</body>
+
+</html>

templates/includes/flash.html

@@ -0,0 +1,8 @@
+<!-- Mostra i messaggi flash -->
+{% with messages = get_flashed_messages() %}
+    {% if messages %}
+        {% for message in messages %}
+        <p>{{ message }}</p>
+        {% endfor %}
+    {% endif %}
+{% endwith %}

templates/login.html

@@ -0,0 +1,26 @@
+<!doctype html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Login</title>
+</head>
+
+<body>
+    <h2>Login</h2>
+
+    <form method="POST" action="/login">
+        <label for="username">Username:</label>
+        <input type="text" id="username" name="username" required><br>
+        <label for="password">Password:</label>
+        <input type="password" id="password" name="password" required><br>
+        <button type="submit">Login</button>
+    </form>
+
+    <!-- Mostra i messaggi flash -->
+    {% include 'includes/flash.html' %}
+
+</body>
+
+</html>

templates/signup.html

@@ -0,0 +1,28 @@
+<!doctype html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Sign Up</title>
+</head>
+
+<body>
+    <h2>Sign Up</h2>
+
+    <form method="POST" action="/signup">
+        <label for="nickname">Nickname:</label>
+        <input type="text" id="nickname" name="nickname" required><br>
+        <label for="username">Username:</label>
+        <input type="text" id="username" name="username" required><br>
+        <label for="password">Password:</label>
+        <input type="password" id="password" name="password" required><br>
+        <button type="submit">Sign Up</button>
+    </form>
+
+    <!-- Mostra i messaggi flash -->
+    {% include 'includes/flash.html' %}
+
+</body>
+
+</html>