rene
92620c2c52
- Notifications: History-Tabelle, /api/notifications Endpoints, push.py schreibt in DB - Notifications: Page (notifications.js) mit Badge, Typen-Icons, gelesen-Markierung - Routen: Entdecken-Modus mit Ersteller-Anzeige, Nearby-Filter, Mine/Discover Toggle - Onboarding: Willkommens-Modal nach Registrierung, Push-Angebot nach Login - Admin: Scheduler-Tab (Jobs anzeigen + manuell triggern), System-Health (DB/Disk/Uptime) - Admin: Audit-Log (wer hat was wann gemacht), erweiterte Stats (Push-Abos, aktive User, Routen) - SW: by-v152, APP_VER 125
142 lines
5 KiB
Python
142 lines
5 KiB
Python
"""BAN YARO — Push-Notification Routes"""
|
|
|
|
import os
|
|
import json
|
|
import logging
|
|
from fastapi import APIRouter, Depends, HTTPException
|
|
from pydantic import BaseModel
|
|
from typing import Optional
|
|
from pywebpush import webpush, WebPushException
|
|
|
|
from database import db
|
|
from auth import get_current_user
|
|
|
|
router = APIRouter()
|
|
logger = logging.getLogger(__name__)
|
|
|
|
VAPID_PUBLIC_KEY = os.getenv("VAPID_PUBLIC_KEY", "")
|
|
VAPID_PRIVATE_KEY = os.getenv("VAPID_PRIVATE_KEY", "")
|
|
VAPID_CONTACT = os.getenv("VAPID_CONTACT", "mailto:admin@banyaro.app")
|
|
|
|
|
|
# ------------------------------------------------------------------
|
|
# GET /api/push/vapid-key — Public Key für Frontend
|
|
# ------------------------------------------------------------------
|
|
@router.get("/vapid-key")
|
|
async def get_vapid_key():
|
|
if not VAPID_PUBLIC_KEY:
|
|
raise HTTPException(503, "Push-Notifications nicht konfiguriert.")
|
|
return {"vapid_public_key": VAPID_PUBLIC_KEY}
|
|
|
|
|
|
# ------------------------------------------------------------------
|
|
# POST /api/push/subscribe — Subscription speichern
|
|
# ------------------------------------------------------------------
|
|
class PushSubscription(BaseModel):
|
|
endpoint: str
|
|
keys: dict # { p256dh, auth }
|
|
expirationTime: Optional[int] = None
|
|
|
|
|
|
@router.post("/subscribe", status_code=201)
|
|
async def subscribe(data: PushSubscription, user=Depends(get_current_user)):
|
|
p256dh = data.keys.get("p256dh", "")
|
|
auth = data.keys.get("auth", "")
|
|
|
|
with db() as conn:
|
|
conn.execute("""
|
|
INSERT INTO push_subscriptions (user_id, endpoint, p256dh, auth)
|
|
VALUES (?, ?, ?, ?)
|
|
ON CONFLICT(endpoint) DO UPDATE SET
|
|
p256dh=excluded.p256dh,
|
|
auth=excluded.auth,
|
|
user_id=excluded.user_id
|
|
""", (user["id"], data.endpoint, p256dh, auth))
|
|
|
|
logger.info(f"Push-Subscription gespeichert für user {user['id']}")
|
|
return {"ok": True}
|
|
|
|
|
|
# ------------------------------------------------------------------
|
|
# DELETE /api/push/subscribe — Subscription entfernen
|
|
# ------------------------------------------------------------------
|
|
@router.delete("/subscribe")
|
|
async def unsubscribe(user=Depends(get_current_user)):
|
|
with db() as conn:
|
|
conn.execute(
|
|
"DELETE FROM push_subscriptions WHERE user_id=?", (user["id"],)
|
|
)
|
|
return {"ok": True}
|
|
|
|
|
|
# ------------------------------------------------------------------
|
|
# Interne Hilfsfunktion: Push an einen oder alle User schicken
|
|
# ------------------------------------------------------------------
|
|
def send_push(subscription_row, payload: dict) -> bool:
|
|
"""Schickt eine Push-Notification. Gibt True bei Erfolg zurück."""
|
|
if not VAPID_PRIVATE_KEY:
|
|
return False
|
|
try:
|
|
webpush(
|
|
subscription_info={
|
|
"endpoint": subscription_row["endpoint"],
|
|
"keys": {
|
|
"p256dh": subscription_row["p256dh"],
|
|
"auth": subscription_row["auth"],
|
|
},
|
|
},
|
|
data=json.dumps(payload),
|
|
vapid_private_key=VAPID_PRIVATE_KEY,
|
|
vapid_claims={"sub": VAPID_CONTACT},
|
|
)
|
|
return True
|
|
except WebPushException as e:
|
|
status = e.response.status_code if e.response else 0
|
|
logger.warning(f"Push fehlgeschlagen (HTTP {status}): {e}")
|
|
# 410 Gone = Subscription abgelaufen → aus DB löschen
|
|
if status == 410:
|
|
with db() as conn:
|
|
conn.execute(
|
|
"DELETE FROM push_subscriptions WHERE endpoint=?",
|
|
(subscription_row["endpoint"],)
|
|
)
|
|
return False
|
|
|
|
|
|
def send_push_to_user(user_id: int, payload: dict):
|
|
"""Schickt Push an alle Subscriptions eines Users und speichert Notification in DB."""
|
|
with db() as conn:
|
|
rows = conn.execute(
|
|
"SELECT * FROM push_subscriptions WHERE user_id=?", (user_id,)
|
|
).fetchall()
|
|
sent = 0
|
|
for row in rows:
|
|
if send_push(row, payload):
|
|
sent += 1
|
|
|
|
# Notification in DB persistieren (unabhängig vom Push-Versand)
|
|
notif_type = payload.get("type", "info")
|
|
notif_title = payload.get("title", "Benachrichtigung")
|
|
notif_body = payload.get("body") or payload.get("message")
|
|
notif_data = json.dumps({k: v for k, v in payload.items()
|
|
if k not in ("type", "title", "body", "message")}) or None
|
|
with db() as conn:
|
|
conn.execute(
|
|
"""INSERT INTO notifications (user_id, type, title, body, data)
|
|
VALUES (?, ?, ?, ?, ?)""",
|
|
(user_id, notif_type, notif_title, notif_body, notif_data),
|
|
)
|
|
|
|
return sent
|
|
|
|
|
|
def send_push_to_all(payload: dict):
|
|
"""Schickt Push an alle abonnierten User (z.B. Giftköder-Alarm)."""
|
|
with db() as conn:
|
|
rows = conn.execute("SELECT * FROM push_subscriptions").fetchall()
|
|
sent = 0
|
|
for row in rows:
|
|
if send_push(row, payload):
|
|
sent += 1
|
|
logger.info(f"Push an {sent}/{len(rows)} Subscriptions gesendet.")
|
|
return sent
|