Added working store functionality and basic Stripe checkout. Added 404

page, module versions and added functionality to admin dashboard!

Author: Artucuno

CREDITS.md

@@ -0,0 +1,2 @@
+https://github.com/smartboyathome/Cheshire-Engine/blob/master/ScoringServer/utils.py
+https://www.w3schools.com/

README.md

@@ -7,6 +7,7 @@ A WIP Open-source WHMCS alternative.
 (Not yet recommended for use in a production environment)
 
 # Features
+- [x] Built with Flask
 - [x] [Stripe](https://stripe.com) Support
 - [x] Modular Design
   - [x] Custom Module Support

configs/store/config.py

@@ -1,11 +1,17 @@
 from flask import Blueprint, render_template, abort
+from flask import *
 from jinja2 import TemplateNotFound
 import stripe
 import config
-import os
+import sys, os
+from colorama import Fore, Back, Style
+from colorama import init
+import imp
+import json
 module = Blueprint('Loona Products', __name__)
 module.hasAdminPage = True
 module.moduleDescription = 'The Core Product Management Module for LoonaBilling'
+module.version = '1.1'
 
 def cf(folder):
     try:
@@ -14,12 +20,53 @@ def cf(folder):
     except Exception as e:
         #print(e)
         pass
+mods = {}
+for path, dirs, files in os.walk("core/payments", topdown=False):
+    for fname in files:
+        try:
+            name, ext = os.path.splitext(fname)
+            if ext == '.py' and not name == '__init__':
+                f, filename, descr = imp.find_module(name, [path])
+                mods[fname] = imp.load_module(name, f, filename, descr)
+                #print(getattr(mods[fname]))
+                print(Fore.GREEN + '[Product Module] ' + Style.RESET_ALL + 'Imported', mods[fname].module.name)
+                #globals()
+        except Exception as e:
+            exc_type, exc_obj, exc_tb = sys.exc_info()
+            fname = os.path.split(exc_tb.tb_frame.f_code.co_filename)[1]
+            print(Fore.RED, '[ERROR]', path, name, e, exc_type, fname, exc_tb.tb_lineno, Style.RESET_ALL)
 
 def checks():
     cf('products')
+    cf('products/default')
 
 checks()
 
 @module.route('/admin/{}'.format(module.name))
 def adminPage():
     return render_template('core/LoonaProducts/admin.html', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)
+
+@module.route('/admin/{}/createProduct'.format(module.name), methods=['GET', 'POST'])
+def createProduct():
+    if request.method == 'POST':
+        print(request.form)
+        description = ''
+        if 'description' in request.form:
+            description = request.form['description']
+        if 'title' not in request.form:
+            return render_template('core/LoonaProducts/adminCreateProduct.html', categories=os.listdir('products'), msg='Title is missing', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)
+        elif 'price' not in request.form:
+            return render_template('core/LoonaProducts/adminCreateProduct.html', categories=os.listdir('products'), msg='Price is missing', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)
+        else:
+            data = {}
+            data['Config'] = []
+            data['Config'].append({
+            'title': request.form['title'],
+            'description': description,
+            'price': request.form['price'],
+            'automation': None
+            })
+            with open('products/{}/{}.json'.format(request.form['category'], len(os.listdir('products/{}'.format(request.form['category'])))), 'w+') as of:
+                json.dump(data, of)
+            return render_template('core/LoonaProducts/adminCreateProduct.html', categories=os.listdir('products'), msg=f'Created Product: {request.fprm["title"]}', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)
+    return render_template('core/LoonaProducts/adminCreateProduct.html', categories=os.listdir('products'), businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)

configs/stripe/config.py

@@ -5,6 +5,7 @@
 module = Blueprint('Pages', __name__)
 module.hasAdminPage = True
 module.moduleDescription = 'Simple pages for LoonaBilling'
+module.version = '1.1'
 
 def cf(folder):
     try:
@@ -26,8 +27,8 @@ def main():
 
 @module.route('/about')
 def about():
-    return render_template('core/about.html', aboutText=config.aboutText, businessName=config.businessName) # CHANGE TO ABOUT PAGE
+    return render_template('core/about.html', aboutText=config.aboutText, businessName=config.businessName)
 
 @module.route('/contact', methods=['GET', 'POST'])
 def contact():
-    return render_template('core/contact.html', aboutText=config.aboutText, businessName=config.businessName) # CHANGE TO CONTACT PAGE
+    return render_template('core/contact.html', aboutText=config.aboutText, businessName=config.businessName)

core/management/products.py

@@ -7,6 +7,7 @@
 module = Blueprint('Stripe', __name__)
 module.hasAdminPage = True
 module.moduleDescription = 'The Core Stripe Billing Module for LoonaBilling (Unofficial)'
+module.version = '1.1'
 
 def cf(folder):
     try:
@@ -51,22 +52,31 @@ def startSession():
 
         # ?session_id={CHECKOUT_SESSION_ID} means the redirect will have the session ID set as a query param
         print(request.args)
-        ssession = stripe.checkout.Session.create(
-            success_url=config.domain_url + "success?session_id={CHECKOUT_SESSION_ID}",
-            cancel_url=config.domain_url + "cancelled",
-            #payment_method_types=["card"],
-            mode="payment",
-            line_items=[
-                {
-                    "name": "Test Payment",
-                    "quantity": 1,
-                    "currency": "usd",
-                    "amount": "2000",
-                }
-            ],
-            metadata={request.args}
-        )
-        return redirect(ssession.url, code=303)
+        if 'category' not in request.args:
+            return 'Needs category'
+        if 'item' not in request.args:
+            return 'Needs item'
+        if os.path.isdir('products/{}'.format(request.args['category'])):#, request.args['item'])):
+            with open('products/{}/{}.json'.format(request.args['category'], request.args['item'])) as of:
+                data = json.load(of)
+                for p in data['Config']:
+
+                    ssession = stripe.checkout.Session.create(
+                        success_url=config.domain_url + "success?session_id={CHECKOUT_SESSION_ID}",
+                        cancel_url=config.domain_url + "cancelled",
+                        #payment_method_types=["card"],
+                        mode="payment",
+                        line_items=[
+                            {
+                                "name": str(p['title']),
+                                "quantity": 1,
+                                "currency": "usd",
+                                "amount": int(p['price'].replace('.', '')),
+                            }
+                        ],
+                        #metadata={request.args}
+                    )
+                    return redirect(ssession.url, code=303)
     except Exception as e:
         return jsonify(error=str(e)), 403
 
@@ -81,4 +91,13 @@ def cancelled():
 
 @module.route('/admin/{}'.format(module.name))
 def adminPage():
-    return 'a'
+    return render_template('core/Stripe/admin.html', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)
+
+@module.route('/admin/{}/manageKeys'.format(module.name), methods=['GET', 'POST'])
+def adminManageKeys():
+    if 'publishableKey' in request.form:
+        open('configs/stripe/publishableKey.txt', 'w+').write(request.form['publishableKey'].strip())
+    if 'privateKey' in request.form:
+        open('configs/stripe/privateKey.txt', 'w+').write(request.form['privateKey'].strip())
+        stripe.api_key = request.form['privateKey'].strip()
+    return render_template('core/Stripe/adminManageKeys.html', businessName=config.businessName, moduleName=module.name, moduleDescription=module.moduleDescription)

core/pages/pages.py

@@ -7,6 +7,7 @@
 module = Blueprint('LoonaStore', __name__)
 module.hasAdminPage = False
 module.moduleDescription = 'The Core Store Module for LoonaBilling'
+module.version = '1.1'
 
 def cf(folder):
     try:
@@ -44,4 +45,18 @@ def store():
         category = request.args['category']
     if 'item' in request.args:
         item = request.args['item']
-    return 'Welcome to the store!' #<br>{} | {}'.format(category, item) # Removed due to CWE-79 & CWE-116
+    #if category == '':
+    #    return str(os.listdir('products'))
+    categories = []
+    items = []
+    for f in os.listdir('products/{}'.format(category)):
+        if os.path.isdir(os.path.join('products/', category, f)):
+            print('folder')
+            categories += [f]
+        if os.path.isfile(os.path.join('products/', category, f)):
+            with open(os.path.join('products/', category, f)) as of:
+                data = json.load(of)
+                for p in data['Config']:
+                    items += [(p['title'], p['price'], p['description'], f.split('.')[0])]
+
+    return render_template('core/LoonaStore/index.html', businessName=config.businessName, categories=categories, items=items, category=category)

core/payments/stripe.py

@@ -4,6 +4,7 @@
 module = Blueprint('TestAdmin', __name__)
 module.hasAdminPage = False
 module.moduleDescription = 'A test module'
+module.version = '1.1'
 
 @module.route('/testadmin')
 def show():

core/store/store.py

@@ -4,6 +4,7 @@
 module = Blueprint('TestUser', __name__)
 module.hasAdminPage = False
 module.moduleDescription = 'A test module'
+module.version = '1.1'
 
 @module.route('/testuser')
 def show():

logs/README.md

@@ -1,6 +1,6 @@
 colorama==0.4.4
+configs==3.0.3
 cryptography==3.3.2
 Flask==1.1.2
 Jinja2==3.0.1
 psutil==5.8.0
-pyminizip==0.2.6

modules/admin/testadmin.py

@@ -1,5 +1,10 @@
+import time
 import logging
-logging.basicConfig(level=logging.DEBUG)
+logging.basicConfig(filename='logs/'+str(time.time()),
+                    filemode='a',
+                    format='%(asctime)s,%(msecs)d %(name)s %(levelname)s %(message)s',
+                    datefmt='%H:%M:%S',
+                    level=logging.DEBUG)
 import sys, os
 import json
 from flask import Flask
@@ -8,14 +13,12 @@
 import config
 import string
 import random
-import importlib
 import imp
 from colorama import Fore, Back, Style
 from colorama import init
 import psutil
 import base64
 from uuid import getnode
-import pyminizip
 from cryptography.fernet import Fernet
 from cryptography.hazmat.backends import default_backend
 from cryptography.hazmat.primitives import hashes
@@ -25,6 +28,7 @@
 
 app = Flask(__name__)
 app.adminModules = []
+app.version = '1.1'
 
 def cf(folder):
     try:
@@ -47,9 +51,6 @@ def checks():
 checks()
 
 def load_blueprints():
-    """
-    https://github.com/smartboyathome/Cheshire-Engine/blob/master/ScoringServer/utils.py
-    """
     mods = {}
     #path = 'modules'
     #dir_list = os.listdir(path)
@@ -85,7 +86,6 @@ def load_blueprints():
                 print(Fore.RED, '[ERROR]', path, name, e, exc_type, fname, exc_tb.tb_lineno, Style.RESET_ALL)
     return mods
 
-
 mods = load_blueprints()
 print(app.url_map)
 print(mods)
@@ -97,7 +97,14 @@ def load_blueprints():
 
 @app.route('/admin')
 def admin():
-    return render_template('core/admin.html', tabs=app.adminModules, cpuUsage=int(psutil.cpu_percent()), ramUsage=int(psutil.virtual_memory().percent))
+    return render_template('core/admin.html', tabs=app.adminModules, cpuUsage=int(psutil.cpu_percent()), ramUsage=int(psutil.virtual_memory().percent), storageUsage=int(psutil.disk_usage('/').percent))
+
+@app.errorhandler(404)
+def page_not_found(e):
+    # note that we set the 404 status explicitly
+    return render_template('404.html', businessName=config.businessName), 404
 
-app.config['SERVER_NAME'] = config.domain
-app.run(host=config.ip, port=config.port, debug=config.debug, ssl_context=config.ssl)
+if __name__ == '__main__':
+    app.config['SERVER_NAME'] = config.domain
+    print('** LoonaBilling has started **')
+    app.run(host=config.ip, port=config.port, debug=config.debug, ssl_context=config.ssl)

modules/user/testuser.py

@@ -0,0 +1,91 @@
+<!DOCTYPE html>
+<html>
+<head>
+<title>{{ businessName }} - Store</title>
+<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
+<style>
+* {box-sizing: border-box;}
+
+body {
+  margin: 0;
+  font-family: Arial, Helvetica, sans-serif;
+}
+
+.topnav {
+  overflow: hidden;
+  background-color: #e9e9e9;
+}
+
+.topnav a {
+  float: left;
+  display: block;
+  color: black;
+  text-align: center;
+  padding: 14px 16px;
+  text-decoration: none;
+  font-size: 17px;
+}
+
+.topnav a:hover {
+  background-color: #ddd;
+  color: black;
+}
+
+.topnav a.active {
+  background-color: #2196F3;
+  color: white;
+}
+
+.topnav .search-container {
+  float: right;
+}
+
+.topnav input[type=text] {
+  padding: 6px;
+  margin-top: 8px;
+  font-size: 17px;
+  border: none;
+}
+
+.topnav .search-container button {
+  float: right;
+  padding: 6px 10px;
+  margin-top: 8px;
+  margin-right: 16px;
+  background: #ddd;
+  font-size: 17px;
+  border: none;
+  cursor: pointer;
+}
+
+.topnav .search-container button:hover {
+  background: #ccc;
+}
+
+@media screen and (max-width: 600px) {
+  .topnav .search-container {
+    float: none;
+  }
+  .topnav a, .topnav input[type=text], .topnav .search-container button {
+    float: none;
+    display: block;
+    text-align: left;
+    width: 100%;
+    margin: 0;
+    padding: 14px;
+  }
+  .topnav input[type=text] {
+    border: 1px solid #ccc;
+  }
+}
+</style>
+</head>
+<body>
+<div style="padding-left:16px">
+  <h2>Error 404</h2>
+  <p>You are not visiting the correct page....</p>
+</div>
+
+</body>
+{% include 'divs/footer.html' %}
+</html>