Skip to content
Snippets Groups Projects
Select Git revision
  • 0a7f4d43c05fb20024389ee95ea111c7375077c3
  • develop default protected
  • debian-develop
3 results

ext_rbd.py

Blame
  • Code owners
    Assign users and groups as approvers for specific file changes. Learn more.
    server.py 25.13 KiB
    from functools import wraps
    from datetime import date, timedelta, datetime, time
    import os
    import sys
    import random
    import traceback
    import string
    import locale
    import urllib
    
    from flask import Flask, request, url_for, redirect, session, render_template, flash, Response, make_response
    from werkzeug.routing import Rule
    
    locale.setlocale(locale.LC_ALL, 'de_DE.utf8')
    
    app = Flask(__name__)
    
    config = app.config
    config.from_pyfile('config.py.example', silent=True)
    if sys.argv[0].endswith('run.py'):
    	config['SQLITE_INIT_DATA'] = True
    	config['DEBUG'] = True
    config.from_pyfile('config.py', silent=True)
    if sys.argv[0].endswith('run_tests.py'):
    	print('running in test mode')
    	import tempfile
    	# ensure we always use a clean sqlite db for tests
    	config['DB_ENGINE'] = 'sqlite'
    	config['SQLITE_DB'] = tempfile.mktemp(prefix='flasktestingtmp')
    	print('DB File: {}'.format(config['SQLITE_DB']))
    	config['SQLITE_INIT_DATA'] = True
    	config['SQLITE_INIT_SCHEMA'] = True
    	config['DEBUG'] = True
    	config['DISABLE_SCHEDULER'] = True
    	config['JOBS_API_KEY'] = '1'
    if config['DEBUG']:
    	app.jinja_env.auto_reload = True
    
    if not config.get('SECRET_KEY', None):
    	config['SECRET_KEY'] = os.urandom(24)
    
    mod_endpoints = [] #pylint: disable=invalid-name
    def mod_required(func):
    	mod_endpoints.append(func.__name__)
    	@wraps(func)
    	def decorator(*args, **kwargs):
    		if not ismod():
    			flash('Diese Funktion ist nur für Moderatoren verfügbar!')
    			return redirect(url_for('login', ref=request.url))
    		else:
    			return func(*args, **kwargs)
    	return decorator
    
    def evalperm(perms):
    	cperms = []
    	lperms = []
    	vperms = []
    	for perm in perms:
    		if perm['course_id']:
    			cperms.append(perm)
    		elif perm['lecture_id']:
    			lperms.append(perm)
    		elif perm['video_id']:
    			vperms.append(perm)
    	if vperms:
    		return vperms
    	elif lperms:
    		return lperms
    	elif cperms:
    		return cperms
    	return [{'type': 'public'}]
    
    #pylint: disable=wrong-import-position
    from db import query, modify, show, searchquery
    from template_helper import *
    from mail import notify_mods, notify_admins #pylint: disable=unused-import
    from ldap import ldapauth
    from scheduler import sched_func
    #pylint: enable=wrong-import-position
    
    def render_endpoint(endpoint, flashtext=None, **kargs):
    	if flashtext:
    		flash(flashtext)
    	# request.endpoint is used for navbar highlighting
    	request.url_rule = Rule(request.path, endpoint=endpoint)
    	return app.view_functions[endpoint](**kargs)
    
    def handle_errors(endpoint, text, code, *errors, **epargs):
    	def wrapper(func):
    		@wraps(func)
    		def decorator(*args, **kwargs):
    			try:
    				return func(*args, **kwargs)
    			except errors:
    				if endpoint:
    					return make_response(render_endpoint(endpoint, text, **epargs), code)
    				else:
    					return text, code
    		return decorator
    	return wrapper
    
    @app.errorhandler(400)
    def handle_bad_request(e=None): #pylint: disable=unused-argument
    	return render_endpoint('index', 'Diese Seite existiert nicht!'), 400
    
    @app.errorhandler(404)
    @app.route('/invalidpath')
    def handle_not_found(e=None): #pylint: disable=unused-argument
    	return render_endpoint('index', 'Diese Seite existiert nicht!'), 404
    
    @app.errorhandler(405)
    def handle_method_not_allowed(e=None): #pylint: disable=unused-argument
    	return render_endpoint('index', 'Diese Seite existiert nicht!'), 405
    
    @app.errorhandler(500)
    @app.errorhandler(Exception)
    def handle_internal_error(e): #pylint: disable=unused-argument
    	traceback.print_exc()
    	notify_admins('endpoint_exception', traceback=traceback.format_exc())
    	return render_template('500.html', online=True), 500
    
    @sched_func(5*60, firstdelay=0)
    def dump_error_page():
    	if 'ERROR_PAGE' not in config:
    		return
    	request.url_rule = Rule(request.path, endpoint='handle_internal_error')
    	text = render_template('500.html')
    	f = open(config['ERROR_PAGE'], 'w')
    	f.write(text)
    	f.close()
    
    def genlive(streams):
    	for stream in streams:
    		stream['visible'] = True
    		stream['downloadable'] = False
    		stream['path'] = 'pub/hls/%s.m3u8'%stream['livehandle']
    		stream['file_size'] = 0
    	return streams
    
    def genlive_new(lectures):
    	hls_format = (query('SELECT * FROM formats WHERE keywords = \'hls\'') or [{}])[0]
    	res = []
    	for lecture in lectures:
    		if not lecture['stream_job']:
    			continue
    		res.append({'livehandle': '%i'%lecture['id'], 'visible': True,
    				'downloadable': False, 'path': 'pub/hls/%i.m3u8'%lecture['id'],
    				'file_size': 0, 'formats': hls_format, 'lecture_id': lecture['id']})
    	return res
    
    from legacy import legacy_index #pylint: disable=wrong-import-position
    
    @app.route('/')
    @register_navbar('Home', icon='home')
    def index():
    	# handle legacy urls...
    	result = legacy_index()
    	if result:
    		return result
    
    	start = date.today()
    	end = start + timedelta(days=7)
    	upcomming = query('''
    		SELECT lectures.*, streams.active AS nowlive, \'course\' AS sep, courses.*
    		FROM lectures
    		JOIN courses ON (lectures.course_id = courses.id)
    		LEFT JOIN streams ON lectures.id = streams.lecture_id
    		WHERE (time > ?) AND (time < ?) AND (? OR (lectures.visible AND courses.visible AND courses.listed)) AND NOT lectures.norecording
    		ORDER BY time ASC LIMIT 30''', start, end, ismod())
    	for i in upcomming:
    		i['date'] = i['time'].date()
    	latestvideos = query('''
    		SELECT lectures.*, \'course\' AS sep, courses.*
    		FROM lectures
    		LEFT JOIN videos ON (videos.lecture_id = lectures.id)
    		LEFT JOIN courses on (courses.id = lectures.course_id)
    		WHERE (? OR (courses.visible AND courses.listed AND lectures.visible AND videos.visible))
    		GROUP BY videos.lecture_id
    		ORDER BY MAX(videos.time_created) DESC
    		LIMIT 6	''', ismod())
    	livestreams = query('''SELECT streams.handle AS livehandle, lectures.*, \'course\' AS sep, courses.*
    		FROM streams
    		JOIN lectures ON lectures.id = streams.lecture_id
    		JOIN courses ON courses.id = lectures.course_id
    		WHERE streams.active AND (? OR (streams.visible AND courses.visible AND courses.listed AND lectures.visible))
    		''', ismod())
    	livestreams_new = query('''SELECT lectures.*, \'course\' AS sep, courses.*
    		FROM lectures
    		JOIN courses ON courses.id = lectures.course_id
    		WHERE lectures.stream_job IS NOT NULL AND (? OR (courses.visible AND courses.listed AND lectures.visible))
    		''', ismod())
    	for stream in livestreams_new:
    		stream['livehandle'] = '%i'%stream['id']
    	featured = query('SELECT * FROM featured WHERE (? OR visible) ORDER BY "order"', ismod())
    	featured = list(filter(lambda x: not x['deleted'], featured))
    	for item in featured:
    		if item['type'] == 'courses':
    			if item['param'] not in ['title', 'semester', 'organizer', 'subject']:
    				continue
    			item['courses'] = query('SELECT * FROM courses WHERE (visible AND listed) AND "%s" = ? ORDER BY "%s"'%(item['param'], item['param']), item['param2'])
    		elif item['type'] == 'video':
    			item['lecture'] = {'id': item['param']}
    			streams = query('''SELECT streams.handle AS livehandle, streams.lecture_id, \'formats\' AS sep, formats.*
    					FROM streams
    					JOIN lectures ON lectures.id = streams.lecture_id
    					JOIN formats ON formats.keywords = 'hls'
    					WHERE streams.active AND streams.visible AND lectures.id = ?
    					''', item['param'])
    			item['videos'] = query('''
    					SELECT videos.*, 'formats' AS sep, formats.*
    					FROM videos
    					JOIN formats ON (videos.video_format = formats.id)
    					WHERE videos.lecture_id = ? AND videos.visible
    					ORDER BY formats.prio DESC
    					''', item['param'])+genlive(streams)
    	return render_template('index.html', latestvideos=livestreams_new+livestreams+latestvideos, upcomming=upcomming, featured=featured)
    
    @app.route('/courses')
    @register_navbar('Videos', icon='film')
    def courses():
    	courses = query('SELECT * FROM courses WHERE (? OR (visible AND listed)) ORDER BY lower(semester), lower(title)', ismod())
    	chapters = {}
    	for i in query('SELECT lectures.course_id AS id, COUNT(chapters.id) AS c FROM chapters \
    			JOIN lectures ON chapters.lecture_id = lectures.id WHERE NOT chapters.visible AND NOT chapters.deleted GROUP BY lectures.course_id'):
    		chapters[i['id']] = i['c']
    	for course in courses:
    		course['chapter_count'] = chapters.get(course['id'], 0)
    		if course['semester'] == '':
    			course['semester'] = 'zeitlos'
    	groupedby = request.args.get('groupedby')
    	if groupedby not in ['title', 'semester', 'organizer', 'subject']:
    		groupedby = 'semester'
    	return render_template('courses.html', courses=courses, groupedby=groupedby)
    
    @app.route('/<handle>')
    @app.route('/<int:id>')
    @handle_errors('courses', 'Diese Veranstaltung existiert nicht!', 404, IndexError)
    def course(id=None, handle=None):
    	if id:
    		course = query('SELECT * FROM courses WHERE id = ? AND (? OR visible)', id, ismod())[0]
    	else:
    		course = query('SELECT * FROM courses WHERE handle = ? AND (? OR visible)', handle, ismod())[0]
    	course['perm'] = query('SELECT * FROM perm WHERE (NOT perm.deleted) AND course_id = ? ORDER BY type', course['id'])
    	perms = query('SELECT perm.* FROM perm JOIN lectures ON (perm.lecture_id = lectures.id)\
    			WHERE (NOT perm.deleted) AND lectures.course_id = ? ORDER BY perm.type', course['id'])
    	chapters = {}
    	for i in query('SELECT lectures.id AS id, COUNT(chapters.id) AS c FROM chapters \
    			JOIN lectures ON chapters.lecture_id = lectures.id \
    			WHERE lectures.course_id = ? AND NOT chapters.visible AND NOT chapters.deleted \
    			GROUP BY chapters.lecture_id;', course['id']):
    		chapters[i['id']] = i['c']
    	lectures = query('SELECT * FROM lectures WHERE course_id = ? AND (? OR visible) ORDER BY time, duration DESC', course['id'], ismod())
    	for lecture in lectures:
    		lecture['perm'] = []
    		lecture['perm'] += course['perm']
    		lecture['course'] = course
    		lecture['chapter_count'] = chapters.get(lecture['id'], 0)
    		for perm in perms:
    			if perm['lecture_id'] == lecture['id']:
    				lecture['perm'].append(perm)
    	videos = query('''
    			SELECT videos.*, (videos.downloadable AND courses.downloadable) as downloadable, 'formats' AS sep, formats.*
    			FROM videos
    			JOIN lectures ON (videos.lecture_id = lectures.id)
    			JOIN formats ON (videos.video_format = formats.id)
    			JOIN courses ON (lectures.course_id = courses.id)
    			WHERE lectures.course_id= ? AND (? OR videos.visible)
    			ORDER BY lectures.time, formats.prio DESC
    			''', course['id'], ismod())
    	livestreams = query('''SELECT streams.handle AS livehandle, streams.lecture_id, 'formats' AS sep, formats.*
    			FROM streams
    			JOIN lectures ON lectures.id = streams.lecture_id
    			JOIN formats ON formats.keywords = 'hls'
    			WHERE streams.active AND (? OR streams.visible) AND lectures.course_id = ?
    			''', ismod(), course['id'])
    	videos += genlive(livestreams)
    	videos += genlive_new(lectures)
    	chapters = []
    	if course['coursechapters']:
    		chapters = query('SELECT chapters.* FROM chapters \
    				JOIN lectures ON lectures.id = chapters.lecture_id \
    				WHERE lectures.course_id = ? AND NOT chapters.deleted AND chapters.visible ORDER BY time ASC', course['id'])
    	responsible = query('''SELECT users.*, responsible.course_id AS responsible
    			FROM users
    			LEFT JOIN responsible ON (responsible.user_id = users.id AND responsible.course_id = ?)
    			WHERE users.fsacc != '' AND users.level > 0
    			ORDER BY responsible DESC, users.realname ASC''', course['id'])
    	live_sources = query('SELECT * FROM live_sources WHERE NOT deleted')
    	return render_template('course.html', course=course, lectures=lectures, videos=videos, chapters=chapters, responsible=responsible, live_sources=live_sources)
    
    @app.route('/faq')
    @register_navbar('FAQ', icon='question-sign')
    def faq():
    	return render_template('faq.html')
    
    @app.route('/imprint')
    def impress():
    	return render_template("imprint.html")
    
    @app.route('/<course>/<int:id>')
    @app.route('/<int:courseid>/<int:id>')
    @app.route('/<course>/<int:id>/embed', endpoint='embed')
    @app.route('/<int:courseid>/<int:id>/embed', endpoint='embed')
    @handle_errors('course', 'Diese Vorlesung existiert nicht!', 404, IndexError)
    def lecture(id, course=None, courseid=None): #pylint: disable=unused-argument,too-many-branches
    	lecture = query('SELECT * FROM lectures WHERE id = ? AND (? OR visible)', id, ismod())[0]
    	videos = query('''
    			SELECT videos.*, (videos.downloadable AND courses.downloadable) as downloadable, 'formats' AS sep, formats.*
    			FROM videos
    			JOIN formats ON (videos.video_format = formats.id)
    			JOIN courses ON (courses.id = ?)
    			WHERE videos.lecture_id = ? AND (? OR videos.visible)
    			ORDER BY formats.prio DESC
    			''', lecture['course_id'], lecture['id'], ismod())
    	livestreams = query('''SELECT streams.handle AS livehandle, streams.lecture_id, 'formats' AS sep, formats.*
    			FROM streams
    			JOIN lectures ON lectures.id = streams.lecture_id
    			JOIN formats ON formats.keywords = 'hls'
    			WHERE streams.active AND (? OR streams.visible) AND lectures.id = ?
    			''', ismod(), id)
    	videos += genlive(livestreams)
    	videos += genlive_new([lecture])
    	perms = query('SELECT perm.* FROM perm WHERE ((NOT perm.deleted) AND (perm.lecture_id = ? OR perm.course_id = ?))',
    			lecture['id'], lecture['course_id'])
    	if not videos:
    		if lecture['live'] and lecture['time'] > datetime.now()-timedelta(minutes=30) and lecture['time']-timedelta(hours=20) < datetime.now():
    			flash('Der Livestream beginnt um '+human_time(lecture['time'])+' Uhr.')
    		elif lecture['time'] > datetime.now():
    			flash('Diese Vorlesung hat noch nicht stattgefunden!')
    		else:
    			flash('Zu dieser Vorlesung wurden noch keine Videos veröffentlicht!')
    	courses = query('SELECT * FROM courses WHERE id = ? AND (? OR visible)', lecture['course_id'], ismod())
    	if not courses:
    		return render_endpoint('courses', 'Diese Veranstaltung existiert nicht!'), 404
    	chapters = query('SELECT * FROM chapters WHERE lecture_id = ? AND NOT deleted AND (? OR visible) ORDER BY time ASC', id, ismod())
    	
    	password_set = False 	# Has the user set any username/password?
    	is_authorized = False	# Is the user authenticated?
    	courses_loaded = False  # Is the user logged into moodle/l2p but may not be in the course?
    
    	if request.authorization:
    		password_set = True
    		if checkperm(perms, username=request.authorization.username, password=request.authorization.password):
    			is_authorized = True
    	elif 'auth_data' in session:
    		password_set = True
    		if checkperm_array(perms, session['auth_data']):
    			is_authorized = True
    	else:
    		if checkperm(perms):
    			is_authorized = True
    
    	if 'l2p_courses' in session or 'moodle_courses' in session:
    		courses_loaded = True
    
    	if not is_authorized:		
    		mode, text = permdescr(perms)
    		if mode == 'rwth':
    			flash(text+'. <a target="_blank" class="reloadonclose" href="'+url_for('start_rwthauth')+'">Hier authorisieren</a>.', category='player')
    		elif mode == 'moodle':
    			if 'moodle_courses' in session:
    				flash(text+'. Du bist kein Teilnehmer des Moodle-Kurses! \
    						<a target="_blank" class="reloadonclose" href="'+url_for('start_moodleauth')+'">Kurse aktualisieren</a>.', category='player')
    			else:
    				flash(text+'. <a target="_blank" class="reloadonclose" href="'+url_for('start_moodleauth')+'">Hier authorisieren</a>.', category='player')
    		else:
    			flash(text+'.', category='player')
    	return render_template('embed.html' if request.endpoint == 'embed' else 'lecture.html',
    			course=courses[0], lecture=lecture, videos=videos, chapters=chapters, seek=request.args.get('t'), 
    			isAuthorized=is_authorized, permtypes=permtypes(perms), passwordSet=password_set,
    			courses_loaded=courses_loaded)
    
    @app.route('/<course>/<int:id>/login', methods = ['POST'])
    def sessionLogin(id, course): #pylint: disable=unused-argument,too-many-branches
    	if not 'auth_data' in session:
    		session['auth_data'] = {}
    
    	if not "username" in request.form and not "password" in request.form:
    		return "Bad request", 400
    
    	lecture = query('SELECT * FROM lectures WHERE id = ? AND (? OR visible)', id, ismod())[0]
    	perms = query('SELECT perm.* FROM perm WHERE ((NOT perm.deleted) AND (perm.lecture_id = ? OR perm.course_id = ?))',
    			lecture['id'], lecture['course_id'])
    
    	if checkperm(perms, username=request.form['username'], password=request.form['password']):
    		session['auth_data'][request.form['username']] = request.form['password']
    		session.modified = True
    
    	return redirect(url_for('lecture', course=course, id=id))
    
    
    
    @app.route('/search')
    def search():
    	if 'q' not in request.args:
    		return redirect(url_for('index'))
    	searchtext = request.args['q']
    	courses = searchquery(searchtext, '*', ['title', 'short', 'organizer', 'subject', 'description'],
    			'courses', 'WHERE (? OR (visible AND listed)) GROUP BY id ORDER BY _score DESC, semester DESC LIMIT 20', ismod())
    	lectures = searchquery(searchtext, 'lectures.*, \
    			courses.visible AS coursevisible, \
    			courses.listed, \
    			courses.id AS courses_id, \
    			courses.visible AS courses_visible, \
    			courses.listed AS courses_listed, \
    			courses.title AS courses_title, \
    			courses.short AS courses_short, \
    			courses.handle AS courses_handle, \
    			courses.organizer AS courses_organizer, \
    			courses.subject AS courses_subject, \
    			courses.credits AS courses_credits, \
    			courses.created_by AS courses_created_by, \
    			courses.time_created AS courses_time_created, \
    			courses.time_updated AS courses_time_updated, \
    			courses.semester AS courses_semester, \
    			courses.downloadable AS courses_downloadable, \
    			courses.embedinvisible AS courses_embedinvisible, \
    			courses.description AS courses_description, \
    			courses.internal AS courses_internal',
    			['lectures.title', 'lectures.comment', 'lectures.speaker', 'courses.short'],
    			'lectures LEFT JOIN courses on (courses.id = lectures.course_id)',
    			'WHERE (? OR (coursevisible AND listed AND visible)) GROUP BY id ORDER BY _score DESC, time DESC LIMIT 30', ismod())
    	for lecture in lectures:
    		lecture['course'] = {}
    		for key in lecture:
    			if key.startswith('courses_'):
    				lecture['course'][key[8:]] = lecture[key]
    	return render_template('search.html', searchtext=searchtext, courses=courses, lectures=lectures)
    
    def check_mod(user, groups):
    	if not user:
    		return False
    	for group in config['LDAP_GROUPS']:
    		if group in groups:
    			return True
    	return False
    
    @app.route('/internal/login', methods=['GET', 'POST'])
    def login():
    	if request.method == 'GET':
    		return render_template('login.html')
    	userinfo, groups = ldapauth(request.form.get('user'), request.form.get('password'))
    	user = userinfo.get('uid')
    	if not check_mod(user, groups):
    		flash('Login fehlgeschlagen!')
    		return make_response(render_template('login.html'), 403)
    	session['user'] = userinfo
    	dbuser = query('SELECT * FROM users WHERE name = ?', user)
    	if not dbuser:
    		modify('INSERT INTO users (name, realname, fsacc, level, calendar_key, rfc6238) VALUES (?, ?, ?, 1, \'\', \'\')', user, session['user']['givenName'], user)
    		dbuser = query('SELECT * FROM users WHERE name = ?', user)
    	session['user']['dbid'] = dbuser[0]['id']
    	session['_csrf_token'] = ''.join(random.SystemRandom().choice(string.ascii_letters + string.digits) for _ in range(64))
    	session.permanent = True
    	return redirect(request.values.get('ref', url_for('index')))
    
    @app.route('/internal/logout', methods=['GET', 'POST'])
    def logout():
    	session.pop('user', None)
    	return redirect(request.values.get('ref', url_for('index')))
    # For use with nginx auth_request
    @app.route('/internal/auth')
    def auth(): #pylint: disable=too-many-branches
    	if 'X-Original-Uri' not in request.headers:
    		return 'Internal Server Error', 500
    	url_path = urllib.parse.urlparse(request.headers['X-Original-Uri']).path
    	url_path = urllib.parse.unquote(url_path)
    	url_prefix = config['VIDEOPREFIX']+'/'
    	if url_path.startswith(url_prefix):
    		url_path = url_path[len(url_prefix):]  # remove prefix followed by '/'
    	else:
    		return 'Internal Server Error', 500
    	if request.cookies.get('tracking', '') and request.cookies['tracking'].isdigit():
    		cookie = int(request.cookies['tracking'])
    	else:
    		cookie = random.getrandbits(8*8-1)
    	if url_path.startswith('thumbnail/') or ismod():
    		return "OK", 200
    	if url_path.startswith('pub/hls/'):
    		handle = url_path[len('pub/hls/'):].split('_')[0].split('.')[0]
    		if handle.isdigit():
    			perms = query('''SELECT lectures.id AS lecture, perm.*
    					FROM lectures
    					JOIN courses ON (lectures.course_id = courses.id)
    					LEFT JOIN perm ON ((lectures.id = perm.lecture_id OR courses.id = perm.course_id) AND NOT perm.deleted)
    					WHERE lectures.id = ?
    					AND (courses.visible AND lectures.visible)
    					ORDER BY perm.video_id DESC, perm.lecture_id DESC, perm.course_id DESC''', int(handle))
    		else:
    			perms = query('''SELECT lectures.id AS lecture, perm.*
    					FROM streams
    					JOIN lectures ON (streams.lecture_id = lectures.id)
    					JOIN courses ON (lectures.course_id = courses.id)
    					LEFT JOIN perm ON ((lectures.id = perm.lecture_id OR courses.id = perm.course_id) AND NOT perm.deleted)
    					WHERE streams.handle = ?
    					AND (courses.visible AND lectures.visible AND streams.visible)
    					ORDER BY perm.video_id DESC, perm.lecture_id DESC, perm.course_id DESC''', handle)
    	else:
    		perms = query('''SELECT videos.path, videos.id AS vid, perm.*
    				FROM videos
    				JOIN lectures ON (videos.lecture_id = lectures.id)
    				JOIN courses ON (lectures.course_id = courses.id)
    				LEFT JOIN perm ON ((videos.id = perm.video_id OR lectures.id = perm.lecture_id OR courses.id = perm.course_id) AND NOT perm.deleted)
    				WHERE videos.path = ?
    				AND (courses.visible AND lectures.visible AND videos.visible)
    				ORDER BY perm.video_id DESC, perm.lecture_id DESC, perm.course_id DESC''',
    				url_path)
    	if not perms:
    		return "Not found", 404
    
    	is_authorized = False
    
    	if request.authorization:
    		if checkperm(perms, username=request.authorization.username, password=request.authorization.password):
    			is_authorized = True
    	elif 'auth_data' in session:
    		password_set = True
    		if checkperm_array(perms, session['auth_data']):
    			is_authorized = True
    	else:
    		if checkperm(perms):
    			is_authorized = True
    	
    	if is_authorized:
    		try:
    			if not url_path.startswith('pub/hls/'):
    				modify('INSERT INTO log (id, "time", "date", video, source) VALUES (?, ?, ?, ?, true)',
    						cookie, datetime.now(), datetime.combine(date.today(), time()), perms[0]['vid'])
    			elif url_path.endswith('.ts'):
    				fmt = url_path.split('_')[-1].split('-')[0]
    				seg = url_path.split('.')[0].split('-')[-1]
    				modify('INSERT INTO hlslog (id, "time", segment, lecture, handle, format) VALUES (?, ?, ?, ?, ?, ?)',
    						cookie, datetime.now(), seg, perms[0]['lecture'], handle, fmt)
    		except: #pylint: disable=bare-except
    			pass
    		r = make_response('OK', 200)
    		r.set_cookie('tracking', str(cookie), max_age=2147483647) # Many many years
    		return r
    	password_auth = False
    	for perm in perms:
    		if perm['type'] == 'password':
    			password_auth = True
    			break
    	if password_auth:
    		return Response("Login required", 401, {'WWW-Authenticate': 'Basic realm="Login Required"'})
    	return "Not allowed", 403
    
    @app.route('/files/<filename>')
    def files(filename):
    	return redirect(config['VIDEOPREFIX']+'/'+filename)
    
    @app.route('/sitemap.xml')
    def sitemap():
    	pages = []
    	# static pages
    	for rule in app.url_map.iter_rules():
    		if 'GET' in rule.methods and len(rule.arguments) == 0:
    			if rule.endpoint not in mod_endpoints:
    				pages.append([rule.rule])
    	for i in query('select * from courses where visible and listed'):
    		pages.append([url_for('course', handle=i['handle'])])
    		for j in query('select * from lectures where (course_id = ? and visible)', i['id']):
    			pages.append([url_for('lecture', course=i['handle'], id=j['id'])])
    	return Response(render_template('sitemap.xml', pages=pages), 200, {'Content-Type': 'application/atom+xml'})
    
    @app.route('/internal/dbstatus')
    @register_navbar('DB-Status', icon='ok', group='weitere')
    @mod_required
    def dbstatus():
    	hosts = set()
    	clusters = {}
    	status = {}
    	variables = {}
    	for host in config.get('MYSQL_DBSTATUS_HOSTS', [])+[config.get('MYSQL_HOST', None)]:
    		try:
    			for _host in show('SHOW VARIABLES LIKE "wsrep_cluster_address"', host=host)['wsrep_cluster_address'][len('gcomm://'):].split(','):
    				hosts.add(_host)
    		except: #pylint: disable=bare-except
    			pass
    	for host in sorted(list(hosts)):
    		try:
    			status[host] = show('SHOW GLOBAL STATUS LIKE "wsrep%"', host=host)
    			variables[host] = show('SHOW GLOBAL VARIABLES LIKE "wsrep%"', host=host)
    		except: #pylint: disable=bare-except
    			status[host] = {'wsrep_cluster_state_uuid': '',
    					'wsrep_local_state_comment': 'Not reachable',
    					'wsrep_cluster_conf_id': '0',
    					'wsrep_cluster_status': 'Unknown'}
    			variables[host] = {'wsrep_node_name': host, 'wsrep_cluster_name': 'unknown'}
    		cluster = variables[host]['wsrep_cluster_name']+'-'+status[host]['wsrep_cluster_conf_id']
    		if cluster not in clusters:
    			clusters[cluster] = []
    		clusters[cluster].append(host)
    	return render_template('dbstatus.html', clusters=clusters, statuses=status, vars=variables), 200
    
    def date_json_handler(obj):
    	return obj.isoformat() if hasattr(obj, 'isoformat') else obj
    
    def api_token_required(config_key):
    	def wrapper(func):
    		@wraps(func)
    		def decorator(*args, **kwargs):
    			if 'apikey' in request.values:
    				token = request.values['apikey']
    			elif request.get_json() and ('apikey' in request.get_json()):
    				token = request.get_json()['apikey']
    			else:
    				token = None
    			if not token == config.get(config_key, [None]):
    				return 'Permission denied', 403
    			else:
    				return func(*args, **kwargs)
    		return decorator
    	return wrapper
    
    #pylint: disable=wrong-import-position
    from jobmanagement import job_handler, job_handler_handle, job_set_state, schedule_job, cancel_job, restart_job #pylint: disable=unused-import
    import feeds
    import importer
    import stats
    if 'ICAL_URL' in config:
    	import meetings
    import l2pauth
    import sorter
    import timetable
    import chapters
    import icalexport
    import livestreams
    import encoding
    import cutprogress
    import jobs
    #pylint: enable=wrong-import-position