Add misc

khteh · khteh · commit 0f2a3ff7c320 · 2025-03-26T15:50:24.000+08:00
diff --git a/Pipfile b/Pipfile
@@ -31,6 +31,7 @@ pytest-flask = "*"
 pytest = "*"
 pytest-asyncio = "*"
 beautifulsoup4 = "*"
+tox = "*"
 
 [requires]
 python_version = "3.12"
diff --git a/Pipfile.lock b/Pipfile.lock
diff --git a/src/controllers/HomeController.py b/src/controllers/HomeController.py
@@ -1,5 +1,5 @@
 import re, jsonpickle, logging
-from quart import Blueprint, render_template, session
+from quart import Blueprint, ResponseReturnValue, render_template, session
 from datetime import datetime, timezone
 from ..common.Authentication import Authentication
 from ..models.UserModel import UserModel
diff --git a/src/main.py b/src/main.py
@@ -1,8 +1,10 @@
 import quart_flask_patch
 import logging, os, asyncio, json
+from datetime import date, datetime, timedelta, timezone
 from urllib import parse
 from hypercorn.config import Config
-from quart import Quart, request
+from hypercorn.middleware import HTTPToHTTPSRedirectMiddleware
+from quart import Quart, Response
 from flask_healthz import Healthz, HealthError
 from quart_wtf.csrf import CSRFProtect
 from quart_cors import cors
@@ -20,15 +22,24 @@
 logging.basicConfig(format='%(asctime)s %(levelname)-8s %(message)s', level=logging.INFO, datefmt='%Y-%m-%d %H:%M:%S')	
 #oidc.init_app(app)
 
+def _add_secure_headers(response: Response) -> Response:
+    response.headers["Strict-Transport-Security"] = (
+        "max-age=63072000; includeSubDomains; preload"
+    )
+    response.headers["X-Content-Type-Options"] = "nosniff"
+    return response
+
 def create_app() -> Quart:
     """
     Create App
     """
     # App initialization
     app = Quart(__name__, template_folder='view/templates', static_url_path='', static_folder='view/static')
     app.config.from_file("/etc/pythonrestapi_config.json", json.load)
+    app.config["SEND_FILE_MAX_AGE_DEFAULT"] = timedelta(days=90)
     app.config["SQLALCHEMY_DATABASE_URI"] = f"postgresql+psycopg://{os.environ.get('DB_USERNAME')}:{parse.quote(os.environ.get('DB_PASSWORD'))}@{app.config['DB_HOST']}/library"
     app.config["POSTGRESQL_DATABASE_URI"] = f"postgresql://{os.environ.get('DB_USERNAME')}:{parse.quote(os.environ.get('DB_PASSWORD'))}@{app.config['DB_HOST']}/library"
+    app.after_request(_add_secure_headers)
     app.register_blueprint(home_blueprint, url_prefix="/")
     app.register_blueprint(fibonacci_blueprint, url_prefix="/fibonacci")
     app.register_blueprint(auth_blueprint, url_prefix="/auth")
@@ -41,6 +52,10 @@ def create_app() -> Quart:
     csrf = CSRFProtect(app)
     bcrypt.init_app(app)
     db.init_app(app)
+    if app.debug:
+        return HTTPToHTTPSRedirectMiddleware(app, "khteh.com")  # type: ignore - Defined in hypercorn.toml server_names
+    else:
+        app.config["TEMPLATES_AUTO_RELOAD"] = True
     return app
 
 def liveness():
