import os import click import time import psutil import threading from flask import Flask, render_template, request, redirect, url_for, session, flash, jsonify, send_from_directory from flask_migrate import Migrate import subprocess from werkzeug.utils import secure_filename from functools import wraps, lru_cache from extensions import db, bcrypt, login_manager from sqlalchemy import text from dotenv import load_dotenv import logging import gc # Load environment variables from .env file load_dotenv() # Configure logging for better performance monitoring logging.basicConfig(level=logging.WARNING) # First import models from models import User, Player, Group, Content, ServerLog, group_player # Then import utilities that use the models from flask_login import login_user, logout_user, login_required, current_user from utils.logger import get_recent_logs, log_action, log_upload, log_process, log_user_deleted, log_user_created from utils.group_player_management import ( create_group as create_group_util, edit_group as edit_group_util, delete_group as delete_group_util, add_player as add_player_util, edit_player as edit_player_util, delete_player as delete_player_util, get_group_content, get_player_content, update_player_content_order, update_group_content_order, edit_group_media, delete_group_media ) # Finally, import modules that depend on both models and logger from utils.uploads import ( add_image_to_playlist, convert_video_and_update_playlist, process_pdf, process_pptx_improved, process_uploaded_files ) # Define global variables for server version and build date SERVER_VERSION = "1.1.0" BUILD_DATE = "2025-06-29" app = Flask(__name__, instance_relative_config=True) # Set the secret key from environment variable or use a default value app.config['SECRET_KEY'] = os.getenv('SECRET_KEY', 'Ana_Are_Multe_Mere-Si_Nu_Are_Pere') instance_dir = os.path.abspath(os.path.join(os.path.dirname(__file__), 'instance')) os.makedirs(instance_dir, exist_ok=True) db_path = os.path.join(instance_dir, 'dashboard.db') app.config['SQLALCHEMY_DATABASE_URI'] = f'sqlite:///{db_path}' app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False # Performance configuration app.config['SQLALCHEMY_ENGINE_OPTIONS'] = { 'pool_pre_ping': True, 'pool_recycle': 300, 'connect_args': {'timeout': 10} } # Set maximum content length to 1GB (reduced from 2GB) app.config['MAX_CONTENT_LENGTH'] = 1024 * 1024 * 1024 # 1GB # Add timeout configuration app.config['SEND_FILE_MAX_AGE_DEFAULT'] = 31536000 # Cache static files for 1 year # Ensure the instance folder exists os.makedirs(app.instance_path, exist_ok=True) os.makedirs(instance_dir, exist_ok=True) db.init_app(app) bcrypt.init_app(app) login_manager.init_app(app) UPLOAD_FOLDER = 'static/uploads' app.config['UPLOAD_FOLDER'] = UPLOAD_FOLDER UPLOAD_FOLDERLOGO = 'static/resurse' app.config['UPLOAD_FOLDERLOGO'] = UPLOAD_FOLDERLOGO # Ensure the upload folder exists if not os.path.exists(UPLOAD_FOLDER): os.makedirs(UPLOAD_FOLDER, exist_ok=True) if not os.path.exists(UPLOAD_FOLDERLOGO): os.makedirs(UPLOAD_FOLDERLOGO, exist_ok=True) login_manager.login_view = 'login' migrate = Migrate(app, db) @login_manager.user_loader def load_user(user_id): return db.session.get(User, int(user_id)) def admin_required(f): @wraps(f) def decorated_function(*args, **kwargs): if current_user.role != 'admin': return redirect(url_for('dashboard')) return f(*args, **kwargs) return decorated_function @app.route('/') @login_required def dashboard(): players = Player.query.all() groups = Group.query.all() logo_exists = os.path.exists(os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'logo.png')) server_logs = get_recent_logs(20) # Get the 20 most recent logs return render_template('dashboard.html', players=players, groups=groups, logo_exists=logo_exists, server_logs=server_logs) @app.route('/register', methods=['GET', 'POST']) def register(): if request.method == 'POST': username = request.form['username'] password = request.form['password'] hashed_password = bcrypt.generate_password_hash(password).decode('utf-8') new_user = User(username=username, password=hashed_password, role='user') db.session.add(new_user) db.session.commit() return redirect(url_for('login')) return render_template('register.html') @app.route('/login', methods=['GET', 'POST']) def login(): if request.method == 'POST': username = request.form['username'] password = request.form['password'] user = User.query.filter_by(username=username).first() if user and bcrypt.check_password_hash(user.password, password): login_user(user) return redirect(url_for('dashboard')) else: flash('Login Unsuccessful. Please check username and password', 'danger') login_picture_exists = os.path.exists(os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'login_picture.png')) return render_template('login.html', login_picture_exists=login_picture_exists) @app.route('/logout') @login_required def logout(): logout_user() return redirect(url_for('login')) @app.route('/upload_content', methods=['GET', 'POST']) @login_required @admin_required def upload_content(): if request.method == 'POST': target_type = request.form.get('target_type') target_id = request.form.get('target_id') files = request.files.getlist('files') duration = int(request.form['duration']) return_url = request.form.get('return_url') media_type = request.form['media_type'] print(f"Target Type: {target_type}, Target ID: {target_id}, Media Type: {media_type}") if not target_type or not target_id: flash('Please select a target type and target ID.', 'danger') return redirect(url_for('upload_content')) # Process uploaded files and get results results = process_uploaded_files(app, files, media_type, duration, target_type, target_id) return redirect(return_url) # Handle GET request target_type = request.args.get('target_type') target_id = request.args.get('target_id') return_url = request.args.get('return_url', url_for('dashboard')) players = [{'id': player.id, 'username': player.username} for player in Player.query.all()] groups = [{'id': group.id, 'name': group.name} for group in Group.query.all()] return render_template('upload_content.html', target_type=target_type, target_id=target_id, players=players, groups=groups, return_url=return_url) @app.route('/admin') @login_required @admin_required def admin(): logo_exists = os.path.exists(os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'logo.png')) login_picture_exists = os.path.exists(os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'login_picture.png')) users = User.query.all() return render_template( 'admin.html', users=users, logo_exists=logo_exists, login_picture_exists=login_picture_exists, server_version=SERVER_VERSION, build_date=BUILD_DATE ) @app.route('/admin/change_role/', methods=['POST']) @login_required @admin_required def change_role(user_id): user = User.query.get_or_404(user_id) new_role = request.form['role'] user.role = new_role db.session.commit() return redirect(url_for('admin')) @app.route('/admin/delete_user/', methods=['POST']) @login_required @admin_required def delete_user(user_id): user = User.query.get_or_404(user_id) username = user.username # Store username before deletion for logging db.session.delete(user) db.session.commit() # Add log entry for user deletion log_user_deleted(username) return redirect(url_for('admin')) @app.route('/admin/create_user', methods=['POST']) @login_required @admin_required def create_user(): username = request.form['username'] password = request.form['password'] role = request.form['role'] hashed_password = bcrypt.generate_password_hash(password).decode('utf-8') new_user = User(username=username, password=hashed_password, role=role) db.session.add(new_user) db.session.commit() # Add log entry for user creation log_user_created(username, role) return redirect(url_for('admin')) @app.route('/player/') @login_required def player_page(player_id): player = db.session.get(Player, player_id) content = get_player_content(player_id) return render_template('player_page.html', player=player, content=content) @app.route('/player//upload', methods=['POST']) @login_required def upload_content_to_player(player_id): player = Player.query.get_or_404(player_id) files = request.files.getlist('files') duration = int(request.form['duration']) for file in files: filename = secure_filename(file.filename) file_path = os.path.join(app.config['UPLOAD_FOLDER'], filename) file.save(file_path) new_content = Content(file_name=filename, duration=duration, player_id=player_id) db.session.add(new_content) db.session.commit() return redirect(url_for('player_page', player_id=player_id)) @app.route('/content//edit', methods=['POST']) @login_required def edit_content(content_id): content = Content.query.get_or_404(content_id) new_duration = int(request.form['duration']) content.duration = new_duration db.session.commit() return redirect(url_for('player_page', player_id=content.player_id)) @app.route('/content//delete', methods=['POST']) @login_required def delete_content(content_id): content = Content.query.get_or_404(content_id) player_id = content.player_id db.session.delete(content) db.session.commit() return redirect(url_for('player_page', player_id=player_id)) @app.route('/player//fullscreen', methods=['GET', 'POST']) def player_fullscreen(player_id): player = Player.query.get_or_404(player_id) if request.method == 'POST': hostname = request.form['hostname'] password = request.form['password'] quickconnect_password = request.form.get('quickconnect_password') if quickconnect_password: if player.hostname == hostname and bcrypt.check_password_hash(player.quickconnect_password, quickconnect_password): authenticated = True else: authenticated = False else: if player.hostname == hostname and bcrypt.check_password_hash(player.password, password): authenticated = True else: authenticated = False else: authenticated = False if authenticated or current_user.is_authenticated: content = Content.query.filter_by(player_id=player_id).all() return render_template('player_fullscreen.html', player=player, content=content) else: return render_template('player_auth.html', player_id=player_id) @app.route('/player//delete', methods=['POST']) @login_required @admin_required def delete_player(player_id): delete_player_util(player_id) return redirect(url_for('dashboard')) # Update the add_player function @app.route('/player/add', methods=['GET', 'POST']) @login_required @admin_required def add_player(): if request.method == 'POST': username = request.form['username'] hostname = request.form['hostname'] password = bcrypt.generate_password_hash(request.form['password']).decode('utf-8') quickconnect_password = bcrypt.generate_password_hash(request.form['quickconnect_password']).decode('utf-8') orientation = request.form.get('orientation', 'Landscape') # <-- Get orientation add_player_util(username, hostname, password, quickconnect_password, orientation) # <-- Pass orientation flash(f'Player "{username}" added successfully.', 'success') clear_player_cache() # Clear cache when player is added return redirect(url_for('dashboard')) return render_template('add_player.html') @app.route('/player//edit', methods=['GET', 'POST']) @login_required @admin_required def edit_player(player_id): player = Player.query.get_or_404(player_id) if request.method == 'POST': username = request.form['username'] hostname = request.form['hostname'] password = request.form['password'] if request.form['password'] else None quickconnect_password = request.form['quickconnect_password'] if request.form['quickconnect_password'] else None orientation = request.form.get('orientation', player.orientation) # <-- Get orientation edit_player_util(player_id, username, hostname, password, quickconnect_password, orientation) # <-- Pass orientation flash(f'Player "{username}" updated successfully.', 'success') clear_player_cache() # Clear cache when player is updated return redirect(url_for('player_page', player_id=player.id)) return_url = request.args.get('return_url', url_for('player_page', player_id=player.id)) return render_template('edit_player.html', player=player, return_url=return_url) @app.route('/change_theme', methods=['POST']) @login_required @admin_required def change_theme(): theme = request.form['theme'] current_user.theme = theme db.session.commit() return redirect(url_for('admin')) # Group management routes @app.route('/group/create', methods=['GET', 'POST']) @login_required @admin_required def create_group(): if request.method == 'POST': name = request.form['name'] player_ids = request.form.getlist('players') orientation = request.form.get('orientation', 'Landscape') try: # Convert player_ids to integers player_ids = [int(pid) for pid in player_ids] group = create_group_util(name, player_ids, orientation) flash(f'Group "{name}" created successfully.', 'success') return redirect(url_for('dashboard')) except ValueError as e: flash(str(e), 'danger') return redirect(url_for('create_group')) # GET request - show create group form players = Player.query.filter_by(locked_to_group_id=None).all() # Only available players return render_template('create_group.html', players=players) @app.route('/group//edit', methods=['GET', 'POST']) @login_required @admin_required def edit_group(group_id): group = Group.query.get_or_404(group_id) if request.method == 'POST': name = request.form['name'] player_ids = request.form.getlist('players') orientation = request.form.get('orientation', group.orientation) try: # Convert player_ids to integers player_ids = [int(pid) for pid in player_ids] edit_group_util(group_id, name, player_ids, orientation) flash(f'Group "{name}" updated successfully.', 'success') return redirect(url_for('dashboard')) except ValueError as e: flash(str(e), 'danger') return redirect(url_for('edit_group', group_id=group_id)) # GET request - show edit group form players = Player.query.all() return render_template('edit_group.html', group=group, players=players) @app.route('/group//delete', methods=['POST']) @login_required @admin_required def delete_group(group_id): delete_group_util(group_id) flash('Group deleted successfully.', 'success') return redirect(url_for('dashboard')) @app.route('/group/') @login_required def manage_group(group_id): group = Group.query.get_or_404(group_id) content = get_group_content(group_id) return render_template('manage_group.html', group=group, content=content) @app.route('/group//fullscreen', methods=['GET', 'POST']) def group_fullscreen(group_id): group = Group.query.get_or_404(group_id) content = get_group_content(group_id) return render_template('group_fullscreen.html', group=group, content=content) @app.route('/group//media//edit', methods=['POST']) @login_required @admin_required def edit_group_media(group_id, content_id): new_duration = int(request.form['duration']) success = edit_group_media(group_id, content_id, new_duration) if success: flash('Media duration updated successfully.', 'success') else: flash('Error updating media duration.', 'danger') return redirect(url_for('manage_group', group_id=group_id)) @app.route('/group//media//delete', methods=['POST']) @login_required @admin_required def delete_group_media(group_id, content_id): success = delete_group_media(group_id, content_id) if success: flash('Media deleted successfully.', 'success') else: flash('Error deleting media.', 'danger') return redirect(url_for('manage_group', group_id=group_id)) @app.route('/upload_logo', methods=['POST']) @login_required @admin_required def upload_logo(): if 'logo' not in request.files: return redirect(url_for('admin')) file = request.files['logo'] if file.filename == '': return redirect(url_for('admin')) if file: filename = secure_filename(file.filename) file_path = os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'logo.png') file.save(file_path) return redirect(url_for('admin')) @app.route('/upload_personalization_pictures', methods=['POST']) @login_required @admin_required def upload_personalization_pictures(): logo_file = request.files.get('logo') login_picture_file = request.files.get('login_picture') if logo_file and logo_file.filename != '': logo_filename = secure_filename(logo_file.filename) logo_file_path = os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'logo.png') logo_file.save(logo_file_path) if login_picture_file and login_picture_file.filename != '': login_picture_filename = secure_filename(login_picture_file.filename) login_picture_file_path = os.path.join(app.config['UPLOAD_FOLDERLOGO'], 'login_picture.png') login_picture_file.save(login_picture_file_path) return redirect(url_for('admin')) @app.route('/clean_unused_files', methods=['POST']) @login_required @admin_required def clean_unused_files(): # Get all file names from the database content_files = {content.file_name for content in Content.query.all()} logo_file = 'resurse/logo.png' login_picture_file = 'resurse/login_picture.png' # Debugging: Print the content files from the database print("Content files from database:", content_files) # Get all files in the upload folder all_files = set(os.listdir(app.config['UPLOAD_FOLDER'])) # Determine unused files used_files = content_files | {logo_file, login_picture_file} unused_files = all_files - used_files # Debugging: Print the lists of files print("All files:", all_files) print("Used files:", used_files) print("Unused files:", unused_files) # Delete unused files for file_name in unused_files: file_path = os.path.join(app.config['UPLOAD_FOLDER'], file_name) if os.path.isfile(file_path): print(f"Deleting file: {file_path}") # Debugging: Print the file being deleted os.remove(file_path) flash('Unused files have been cleaned.', 'success') return redirect(url_for('admin')) # Cache for frequently accessed data @lru_cache(maxsize=128) def get_player_by_hostname(hostname): """Cached function to get player by hostname""" return Player.query.filter_by(hostname=hostname).first() # Clear cache when players are modified def clear_player_cache(): get_player_by_hostname.cache_clear() # Optimized API endpoint with caching @app.route('/api/playlists', methods=['GET']) def get_playlists(): hostname = request.args.get('hostname') quickconnect_code = request.args.get('quickconnect_code') # Validate parameters early if not hostname or not quickconnect_code: return jsonify({'error': 'Hostname and quick connect code are required'}), 400 try: # Use cached function for better performance player = get_player_by_hostname(hostname) if not player: return jsonify({'error': 'Player not found'}), 404 # Verify quickconnect code if not bcrypt.check_password_hash(player.quickconnect_password, quickconnect_code): return jsonify({'error': 'Invalid credentials'}), 401 # Optimized content query if player.locked_to_group_id: # More efficient group content query content = db.session.query(Content).join(Player).filter( Player.locked_to_group_id == player.locked_to_group_id ).distinct(Content.file_name).order_by(Content.position).all() else: # Get player's individual content with limit content = Content.query.filter_by(player_id=player.id).order_by(Content.position).all() # Build playlist efficiently playlist = [] for media in content: playlist.append({ 'file_name': media.file_name, 'url': f"http://{request.host}/media/{media.file_name}", 'duration': media.duration }) # Force garbage collection for memory management gc.collect() return jsonify({ 'playlist': playlist, 'playlist_version': player.playlist_version, 'hashed_quickconnect': player.quickconnect_password }) except Exception as e: app.logger.error(f"API Error: {str(e)}") return jsonify({'error': 'Internal server error'}), 500 # Optimized media serving with proper caching @app.route('/media/') def media(filename): try: response = send_from_directory(app.config['UPLOAD_FOLDER'], filename) # Add caching headers for better performance response.cache_control.max_age = 86400 # Cache for 24 hours response.cache_control.public = True return response except Exception as e: app.logger.error(f"Media serving error: {str(e)}") return jsonify({'error': 'File not found'}), 404 # Optimized playlist version check @app.route('/api/playlist_version', methods=['GET']) def get_playlist_version(): hostname = request.args.get('hostname') quickconnect_code = request.args.get('quickconnect_code') if not hostname or not quickconnect_code: return jsonify({'error': 'Hostname and quick connect code are required'}), 400 try: # Use cached function player = get_player_by_hostname(hostname) if not player or not bcrypt.check_password_hash(player.quickconnect_password, quickconnect_code): return jsonify({'error': 'Invalid credentials'}), 401 return jsonify({ 'playlist_version': player.playlist_version, 'hashed_quickconnect': player.quickconnect_password }) except Exception as e: app.logger.error(f"Version check error: {str(e)}") return jsonify({'error': 'Internal server error'}), 500 @app.route('/player//update_order', methods=['POST']) @login_required def update_content_order(player_id): if not request.is_json: return jsonify({'success': False, 'error': 'Invalid request format'}), 400 player = Player.query.get_or_404(player_id) if player.groups and current_user.role != 'admin': return jsonify({'success': False, 'error': 'Cannot reorder playlist for players in groups'}), 403 items = request.json.get('items', []) success, error, new_version = update_player_content_order(player_id, items) if success: return jsonify({'success': True, 'new_version': new_version}) else: return jsonify({'success': False, 'error': error}), 500 @app.route('/group//update_order', methods=['POST']) @login_required @admin_required def update_group_content_order_route(group_id): if not request.is_json: return jsonify({'success': False, 'error': 'Invalid request format'}), 400 items = request.json.get('items', []) success, error = update_group_content_order(group_id, items) if success: return jsonify({'success': True}) else: return jsonify({'success': False, 'error': error}), 500 @app.route('/debug/content_positions/') @login_required @admin_required def debug_content_positions(group_id): group = Group.query.get_or_404(group_id) player_ids = [p.id for p in group.players] # Query directly with SQL to see positions sql = text("SELECT id, file_name, position, player_id FROM content WHERE player_id IN :player_ids ORDER BY position") result = db.session.execute(sql, {"player_ids": tuple(player_ids)}) content_data = [{"id": row.id, "file_name": row.file_name, "position": row.position, "player_id": row.player_id} for row in result] return jsonify(content_data) @app.cli.command("create-admin") @click.option("--username", default="admin", help="Admin username") @click.option("--password", help="Admin password") def create_admin(username, password): """Create an admin user.""" from models import User from extensions import bcrypt hashed_password = bcrypt.generate_password_hash(password).decode('utf-8') user = User(username=username, password=hashed_password, role='admin') db.session.add(user) db.session.commit() print(f"Admin user '{username}' created successfully.") from models.create_default_user import create_default_user if not app.debug or os.environ.get('WERKZEUG_RUN_MAIN') == 'true': with app.app_context(): try: db.session.execute(db.select(User).limit(1)) except Exception as e: print("Database not initialized or missing tables. Re-initializing...") db.create_all() create_default_user(db, User, bcrypt) # Performance monitoring functions def get_system_stats(): """Get current system performance statistics""" try: cpu_percent = psutil.cpu_percent(interval=1) memory = psutil.virtual_memory() disk = psutil.disk_usage('/') return { 'cpu_percent': cpu_percent, 'memory_percent': memory.percent, 'memory_used_mb': memory.used / (1024 * 1024), 'memory_total_mb': memory.total / (1024 * 1024), 'disk_percent': disk.percent, 'disk_used_gb': disk.used / (1024 * 1024 * 1024), 'disk_total_gb': disk.total / (1024 * 1024 * 1024), 'timestamp': time.time() } except Exception as e: print(f"Error getting system stats: {e}") return None # Performance monitoring endpoint @app.route('/api/performance', methods=['GET']) @login_required def get_performance_stats(): """API endpoint to get real-time performance statistics""" stats = get_system_stats() if stats: return jsonify(stats) else: return jsonify({'error': 'Unable to get system stats'}), 500 # Enhanced upload endpoint with monitoring @app.route('/upload_content_monitored', methods=['POST']) @login_required @admin_required def upload_content_monitored(): """Enhanced upload endpoint with performance monitoring""" start_time = time.time() start_stats = get_system_stats() target_type = request.form.get('target_type') target_id = request.form.get('target_id') files = request.files.getlist('files') duration = int(request.form['duration']) return_url = request.form.get('return_url') media_type = request.form['media_type'] print(f"=== UPLOAD MONITORING START ===") print(f"Target Type: {target_type}, Target ID: {target_id}, Media Type: {media_type}") print(f"Number of files: {len(files)}") print(f"Start CPU: {start_stats['cpu_percent']}%, Memory: {start_stats['memory_percent']}%") if not target_type or not target_id: flash('Please select a target type and target ID.', 'danger') return redirect(url_for('upload_content')) # Monitor during file processing def monitor_upload(): """Background monitoring thread""" while True: stats = get_system_stats() if stats: print(f"[MONITOR] CPU: {stats['cpu_percent']}%, Memory: {stats['memory_percent']}%, Time: {time.time() - start_time:.1f}s") time.sleep(2) # Start monitoring thread monitor_thread = threading.Thread(target=monitor_upload, daemon=True) monitor_thread.start() # Process uploaded files and get results results = process_uploaded_files(app, files, media_type, duration, target_type, target_id) end_time = time.time() end_stats = get_system_stats() total_time = end_time - start_time print(f"=== UPLOAD MONITORING END ===") print(f"Total processing time: {total_time:.2f} seconds") print(f"End CPU: {end_stats['cpu_percent']}%, Memory: {end_stats['memory_percent']}%") print(f"CPU change: {end_stats['cpu_percent'] - start_stats['cpu_percent']:.1f}%") print(f"Memory change: {end_stats['memory_percent'] - start_stats['memory_percent']:.1f}%") # Log performance metrics log_action(f"Upload completed: {len(files)} files, {total_time:.2f}s, CPU: {start_stats['cpu_percent']}% → {end_stats['cpu_percent']}%") return redirect(return_url) @app.route('/player//bulk_delete_content', methods=['POST']) @login_required @admin_required def bulk_delete_player_content(player_id): """Bulk delete content for a specific player""" if not request.is_json: return jsonify({'success': False, 'error': 'Invalid request format'}), 400 player = Player.query.get_or_404(player_id) content_ids = request.json.get('content_ids', []) if not content_ids: return jsonify({'success': False, 'error': 'No content IDs provided'}), 400 try: # Get all content items to delete content_items = Content.query.filter( Content.id.in_(content_ids), Content.player_id == player_id ).all() if not content_items: return jsonify({'success': False, 'error': 'No valid content found to delete'}), 404 # Delete the content items deleted_count = 0 for content in content_items: # Delete the actual file from filesystem file_path = os.path.join(app.config['UPLOAD_FOLDER'], content.file_name) if os.path.exists(file_path): try: os.remove(file_path) except OSError as e: app.logger.warning(f"Could not delete file {file_path}: {e}") # Delete from database db.session.delete(content) deleted_count += 1 # Update playlist version for the player player.playlist_version += 1 db.session.commit() # Clear cache clear_player_cache() # Log the action log_action(f"Bulk deleted {deleted_count} content items from player {player.username}") return jsonify({ 'success': True, 'deleted_count': deleted_count, 'new_playlist_version': player.playlist_version }) except Exception as e: db.session.rollback() app.logger.error(f"Error in bulk delete: {str(e)}") return jsonify({'success': False, 'error': 'Database error occurred'}), 500 @app.route('/group//bulk_delete_content', methods=['POST']) @login_required @admin_required def bulk_delete_group_content(group_id): """Bulk delete content for a specific group""" if not request.is_json: return jsonify({'success': False, 'error': 'Invalid request format'}), 400 group = Group.query.get_or_404(group_id) content_ids = request.json.get('content_ids', []) if not content_ids: return jsonify({'success': False, 'error': 'No content IDs provided'}), 400 try: # Get player IDs in the group player_ids = [p.id for p in group.players] # Get all content items to delete that belong to players in this group content_items = Content.query.filter( Content.id.in_(content_ids), Content.player_id.in_(player_ids) ).all() if not content_items: return jsonify({'success': False, 'error': 'No valid content found to delete'}), 404 # Delete the content items deleted_count = 0 for content in content_items: # Delete the actual file from filesystem file_path = os.path.join(app.config['UPLOAD_FOLDER'], content.file_name) if os.path.exists(file_path): try: os.remove(file_path) except OSError as e: app.logger.warning(f"Could not delete file {file_path}: {e}") # Delete from database db.session.delete(content) deleted_count += 1 # Update playlist version for all players in the group for player in group.players: player.playlist_version += 1 db.session.commit() # Clear cache clear_player_cache() # Log the action log_action(f"Bulk deleted {deleted_count} content items from group {group.name}") return jsonify({ 'success': True, 'deleted_count': deleted_count }) except Exception as e: db.session.rollback() app.logger.error(f"Error in group bulk delete: {str(e)}") return jsonify({'success': False, 'error': 'Database error occurred'}), 500 # Add this at the end of app.py if __name__ == '__main__': app.run(debug=True, host='0.0.0.0', port=5000)