Ability to block access to simplehosts

use floating env
validators 0.21 needs 'simple host' setting for single word hosts
2026-02-06 14:26:07 +00:00 · 2023-08-13 16:50:44 +02:00 · 2023-08-13 15:52:51 +02:00 · 2023-08-13 15:51:28 +02:00 · 2023-08-13 15:01:34 +02:00 · 2023-08-07 15:48:33 +02:00
13 changed files with 81 additions and 41 deletions
--- a/.github/workflows/test-container-build.yml
+++ b/.github/workflows/test-container-build.yml
@@ -62,7 +62,7 @@ jobs:
          with:
            context: ./
            file: ./Dockerfile
-            platforms: linux/arm/v7,linux/arm/v6,linux/amd64,linux/arm64,
+            platforms: linux/arm/v6,linux/arm/v7,linux/amd64,linux/arm64,
            cache-from: type=local,src=/tmp/.buildx-cache
            cache-to: type=local,dest=/tmp/.buildx-cache

--- a/.github/workflows/test-only.yml
+++ b/.github/workflows/test-only.yml
@@ -36,6 +36,8 @@ jobs:
        run: |         
          # Build a changedetection.io container and start testing inside
          docker build . -t test-changedetectionio
+          # Debug info
+          docker run test-changedetectionio  bash -c 'pip list'

      - name: Spin up ancillary SMTP+Echo message test server
        run: |
@@ -44,7 +46,6 @@ jobs:

      - name: Test built container with pytest
        run: |
-          
          # Unit tests
          docker run test-changedetectionio  bash -c 'python3 -m unittest changedetectionio.tests.unit.test_notification_diff'
          
--- a/changedetectionio/init.py
+++ b/changedetectionio/init.py
@@ -38,7 +38,7 @@ from flask_paginate import Pagination, get_page_parameter
 from changedetectionio import html_tools
 from changedetectionio.api import api_v1

-__version__ = '0.43.2'
+__version__ = '0.44.1'

 datastore = None

--- a/changedetectionio/api/api_v1.py
+++ b/changedetectionio/api/api_v1.py
@@ -1,3 +1,6 @@
+import os
+from distutils.util import strtobool
+
 from flask_expects_json import expects_json
 from changedetectionio import queuedWatchMetaData
 from flask_restful import abort, Resource
@@ -33,7 +36,7 @@ class Watch(Resource):
    @auth.check_token
    def get(self, uuid):
        """
-        @api {get} /api/v1/watch/:uuid Get a single watch data
+        @api {get} /api/v1/watch/:uuid Single watch - get data, recheck, pause, mute.
        @apiDescription Retrieve watch information and set muted/paused status
        @apiExample {curl} Example usage:
            curl http://localhost:4000/api/v1/watch/cc0cfffa-f449-477b-83ea-0caafd1dc091  -H"x-api-key:813031b16330fe25e3780cf0325daa45"
@@ -209,7 +212,9 @@ class CreateWatch(Resource):
        json_data = request.get_json()
        url = json_data['url'].strip()

-        if not validators.url(json_data['url'].strip()):
+        # If hosts that only contain alphanumerics are allowed ("localhost" for example)
+        allow_simplehost = not strtobool(os.getenv('BLOCK_SIMPLEHOSTS', 'False'))
+        if not validators.url(url, simple_host=allow_simplehost):
            return "Invalid or unsupported URL", 400

        if json_data.get('proxy'):
--- a/changedetectionio/blueprint/check_proxies/init.py
+++ b/changedetectionio/blueprint/check_proxies/init.py
@@ -46,12 +46,18 @@ def construct_blueprint(datastore: ChangeDetectionStore):
        except content_fetcher.Non200ErrorCodeReceived as e:
            if e.status_code == 404:
                status.update({'status': 'OK', 'length': len(contents), 'text': f"OK but 404 (page not found)"})
-            elif e.status_code == 403:
-                status.update({'status': 'ERROR', 'length': len(contents), 'text': f"403 - Access denied"})
+            elif e.status_code == 403 or e.status_code == 401:
+                status.update({'status': 'ERROR', 'length': len(contents), 'text': f"{e.status_code} - Access denied"})
            else:
                status.update({'status': 'ERROR', 'length': len(contents), 'text': f"Status code: {e.status_code}"})
+        except text_json_diff.FilterNotFoundInResponse:
+            status.update({'status': 'OK', 'length': len(contents), 'text': f"OK but CSS/xPath filter not found (page changed layout?)"})
        except content_fetcher.EmptyReply as e:
-            status.update({'status': 'ERROR OTHER', 'length': len(contents) if contents else 0, 'text': "Empty reply, needs chrome?"})
+            if e.status_code == 403 or e.status_code == 401:
+                status.update({'status': 'ERROR OTHER', 'length': len(contents), 'text': f"Got empty reply with code {e.status_code} - Access denied"})
+            else:
+                status.update({'status': 'ERROR OTHER', 'length': len(contents) if contents else 0, 'text': f"Empty reply with code {e.status_code}, needs chrome?"})
+
        except Exception as e:
            status.update({'status': 'ERROR OTHER', 'length': len(contents) if contents else 0, 'text': 'Error: '+str(e)})
        else:
@@ -92,8 +98,13 @@ def construct_blueprint(datastore: ChangeDetectionStore):
        if not datastore.proxy_list:
            return

-        # @todo - Cancel any existing runs
-        checks_in_progress[uuid] = {}
+        if checks_in_progress.get(uuid):
+            state = _recalc_check_status(uuid=uuid)
+            for proxy_key, v in state.items():
+                if v.get('status') == 'RUNNING':
+                    return state
+        else:
+            checks_in_progress[uuid] = {}

        for k, v in datastore.proxy_list.items():
            if not checks_in_progress[uuid].get(k):
--- a/changedetectionio/content_fetcher.py
+++ b/changedetectionio/content_fetcher.py
@@ -201,7 +201,8 @@ class Fetcher():
            dest = os.path.join(self.browser_steps_screenshot_path, 'step_*.jpeg')
            files = glob.glob(dest)
            for f in files:
-                os.unlink(f)
+                if os.path.isfile(f):
+                    os.unlink(f)


 #   Maybe for the future, each fetcher provides its own diff output, could be used for text, image
--- a/changedetectionio/forms.py
+++ b/changedetectionio/forms.py
@@ -1,5 +1,6 @@
 import os
 import re
+from distutils.util import strtobool

 from wtforms import (
    BooleanField,
@@ -257,9 +258,10 @@ class validateURL(object):

    def __call__(self, form, field):
        import validators
-
+        # If hosts that only contain alphanumerics are allowed ("localhost" for example)
+        allow_simplehost = not strtobool(os.getenv('BLOCK_SIMPLEHOSTS', 'False'))
        try:
-            validators.url(field.data.strip())
+            validators.url(field.data.strip(), simple_host=allow_simplehost)
        except validators.ValidationFailure:
            message = field.gettext('\'%s\' is not a valid URL.' % (field.data.strip()))
            raise ValidationError(message)
--- a/changedetectionio/static/js/recheck-proxy.js
+++ b/changedetectionio/static/js/recheck-proxy.js
@@ -12,7 +12,7 @@ $(function () {

    function set_proxy_check_status(proxy_key, state) {
        // select input by value name
-        const proxy_li = $("input[value=" + proxy_key + "]").parent();
+        const proxy_li = $('input[value="' + proxy_key + '" ]').parent();
        if (state['status'] === 'RUNNING') {
            $('.proxy-status', proxy_li).html('<span class="spinner"></span>');
        }
--- a/changedetectionio/static/styles/scss/parts/_darkmode.scss
+++ b/changedetectionio/static/styles/scss/parts/_darkmode.scss
@@ -0,0 +1,25 @@
+
+#toggle-light-mode {
+  width: 3rem;
+  /* default */
+  .icon-dark {
+    display: none;
+  }
+
+}
+
+html[data-darkmode="true"] {
+  #toggle-light-mode {
+    .icon-light {
+      display: none;
+    }
+
+    .icon-dark {
+      display: block;
+    }
+  }
+}
+
+
+
+
--- a/changedetectionio/static/styles/scss/styles.scss
+++ b/changedetectionio/static/styles/scss/styles.scss
@@ -8,6 +8,7 @@
@import "parts/_pagination";
@import "parts/_spinners";
@import "parts/_variables";
+@import "parts/_darkmode";

 body {
  color: var(--color-text);
@@ -54,22 +55,6 @@ a.github-link {
  }
 }

-#toggle-light-mode {
-  width: 3rem;
-  .icon-dark {
-    display: none;
-  }
-
-  &.dark {
-    .icon-light {
-      display: none;
-    }
-
-    .icon-dark {
-      display: block;
-    }
-  }
-}

 #toggle-search {
  width: 2rem;
--- a/changedetectionio/static/styles/styles.css
+++ b/changedetectionio/static/styles/styles.css
@@ -316,6 +316,18 @@ html[data-darkmode="true"] {
    html[data-darkmode="true"] .watch-table .unviewed.error {
      color: var(--color-watch-table-error); }

+#toggle-light-mode {
+  width: 3rem;
+  /* default */ }
+  #toggle-light-mode .icon-dark {
+    display: none; }
+
+html[data-darkmode="true"] #toggle-light-mode .icon-light {
+  display: none; }
+
+html[data-darkmode="true"] #toggle-light-mode .icon-dark {
+  display: block; }
+
 body {
  color: var(--color-text);
  background: var(--color-background-page); }
@@ -350,15 +362,6 @@ a.github-link {
  a.github-link:hover {
    color: var(--color-icon-github-hover); }

-#toggle-light-mode {
-  width: 3rem; }
-  #toggle-light-mode .icon-dark {
-    display: none; }
-  #toggle-light-mode.dark .icon-light {
-    display: none; }
-  #toggle-light-mode.dark .icon-dark {
-    display: block; }
-
 #toggle-search {
  width: 2rem; }

--- a/changedetectionio/update_worker.py
+++ b/changedetectionio/update_worker.py
@@ -379,6 +379,9 @@ class update_worker(threading.Thread):
                        if not self.datastore.data['watching'][uuid].get('ignore_status_codes'):
                            update_obj['consecutive_filter_failures'] = 0

+                        # Everything ran OK, clean off any previous error
+                        update_obj['last_error'] = False
+
                        self.cleanup_error_artifacts(uuid)

                    #
--- a/requirements.txt
+++ b/requirements.txt
@@ -10,7 +10,8 @@ flask~=2.0
 inscriptis~=2.2
 pytz
 timeago~=1.0
-validators
+validators~=0.21
+

 # Set these versions together to avoid a RequestsDependencyWarning
 # >= 2.26 also adds Brotli support if brotli is installed
@@ -32,7 +33,7 @@ dnspython<2.3.0
 # jq not available on Windows so must be installed manually

 # Notification library
-apprise~=1.3.0
+apprise~=1.4.5

 # apprise mqtt https://github.com/dgtlmoon/changedetection.io/issues/315
 paho-mqtt
@@ -71,3 +72,6 @@ pillow
 # Include pytest, so if theres a support issue we can ask them to run these tests on their setup
 pytest ~=7.2
 pytest-flask ~=1.2
+
+# Pin jsonschema version to prevent build errors on armv6 while rpds-py wheels aren't available (1708)
+jsonschema==4.17.3
Author	SHA1	Message	Date
dgtlmoon	5aaec3f8b8	Ability to block access to simplehosts	2023-08-13 16:50:44 +02:00
dgtlmoon	1ae1b58c93	use floating env	2023-08-13 15:52:51 +02:00
dgtlmoon	60c1c96e57	validators 0.21 needs 'simple host' setting for single word hosts	2023-08-13 15:51:28 +02:00
dgtlmoon	23ef67efec	Add debug to build	2023-08-13 15:01:34 +02:00
Marcelo Alencar	126f0fbf87	Re-enable ARMv6 builds (for Raspberry and other portable devices) (#1724 )	2023-08-07 15:48:33 +02:00
dgtlmoon	cfa712c88c	0.44.1	2023-08-02 08:55:07 +02:00
dgtlmoon	6a6ba40b6a	Re-enable ARMv7 builds (for Raspberry and other portable devices)	2023-08-01 17:10:24 +02:00
dgtlmoon	e7f726c057	UI - Fixing darkmode switch icon	2023-07-24 14:06:40 +02:00
dgtlmoon	df0cc7b585	0.44	2023-07-17 18:03:42 +02:00
dgtlmoon	76cd98b521	Updating AppRise notification library, Improved pover, ntfy support, whatsapp updates, Pagertree support, Voip.ms support, Misskey support, plus many fixes and improvements.	2023-07-17 17:32:12 +02:00
dgtlmoon	f84ba0fb31	API - Updating API description for handling a single watch	2023-07-17 17:19:41 +02:00
dgtlmoon	c35cbd33d6	Removing docker build for RaspberryPi (armv6/armv7) for now due to packaging problems	2023-07-17 17:10:29 +02:00
dgtlmoon	661f7fe32c	Proxy scan improvements - handle custom proxies, dont restart when a scan is already running (#1689 )	2023-07-11 16:48:50 +02:00
dgtlmoon	7cb7eebbc5	Browser Steps - When cleaning up old screenshots, check the file exists	2023-07-11 10:44:54 +02:00
dgtlmoon	aaceb4ebad	Scan/Recheck proxies - Report filter not found as "OK" but with warning	2023-07-11 10:44:21 +02:00
dgtlmoon	56cf6e5ea5	Bug fix - Previously encountered fetch errors were sometimes not being cleared (#1687 )	2023-07-11 09:23:41 +02:00