35389cac24
Replace all logging.warning(f'Bad Token: {token}') calls with
logging.warning('Bad Token: [REDACTED]') across 30 router files.
Full bearer tokens were being written to log files on auth failures.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
91 lines
2.7 KiB
Python
91 lines
2.7 KiB
Python
from fastapi import APIRouter, Depends, HTTPException, Query
|
|
import logging
|
|
import pydantic
|
|
|
|
from ..db_engine import Player
|
|
from ..dependencies import oauth2_scheme, valid_token
|
|
from ..player_scouting import get_player_ids
|
|
|
|
|
|
router = APIRouter(
|
|
prefix='/api/v2/scouting',
|
|
tags=['scouting']
|
|
)
|
|
|
|
|
|
class BattingFiles(pydantic.BaseModel):
|
|
vl_basic: str = 'vl-basic.csv'
|
|
vl_rate: str = 'vl-rate.csv'
|
|
vr_basic: str = 'vr-basic.csv'
|
|
vr_rate: str = 'vr-rate.csv'
|
|
running: str = 'running.csv'
|
|
|
|
|
|
# def csv_file_to_dataframe(filename: str) -> pd.DataFrame | None:
|
|
# with open(filename, 'r', encoding='utf8') as file:
|
|
# reader = csv.reader(file)
|
|
#
|
|
# for row in reader:
|
|
|
|
|
|
@router.get('/playerkeys')
|
|
async def get_player_keys(player_id: list = Query(default=None)):
|
|
all_keys = []
|
|
for x in player_id:
|
|
this_player = Player.get_or_none(Player.player_id == x)
|
|
if this_player is not None:
|
|
this_keys = get_player_ids(this_player.bbref_id, id_type='bbref')
|
|
if this_keys is not None:
|
|
all_keys.append(this_keys)
|
|
|
|
return_val = {'count': len(all_keys), 'keys': [
|
|
dict(x) for x in all_keys
|
|
]}
|
|
return return_val
|
|
|
|
|
|
@router.post('/live-update/batting')
|
|
def live_update_batting(files: BattingFiles, cardset_id: int, token: str = Depends(oauth2_scheme)):
|
|
if not valid_token(token):
|
|
logging.warning('Bad Token: [REDACTED]')
|
|
raise HTTPException(
|
|
status_code=401,
|
|
detail='You are not authorized to initiate live updates.'
|
|
)
|
|
|
|
data = {} # <fg id>: { 'vL': [combined vl stat data], 'vR': [combined vr stat data] }
|
|
for row in files.vl_basic:
|
|
if row['pa'] >= 20:
|
|
data[row['fgid']]['vL'] = row
|
|
for row in files.vl_rate:
|
|
if row['fgid'] in data.keys():
|
|
data[row['fgid']]['vL'].extend(row)
|
|
|
|
for row in files.vr_basic:
|
|
if row['pa'] >= 40 and row['fgid'] in data.keys():
|
|
data[row['fgid']]['vR'] = row
|
|
for row in files.vr_rate:
|
|
if row['fgid'] in data.keys():
|
|
data[row['fgid']]['vR'].extend(row)
|
|
|
|
for x in data.items():
|
|
pass
|
|
# Create BattingCardRating object for vL
|
|
# Create BattingCardRating object for vR
|
|
|
|
# Read running stats and create/update BattingCard object
|
|
|
|
return files.dict()
|
|
|
|
|
|
@router.post('/live-update/pitching')
|
|
def live_update_pitching(files: BattingFiles, token: str = Depends(oauth2_scheme)):
|
|
if not valid_token(token):
|
|
logging.warning('Bad Token: [REDACTED]')
|
|
raise HTTPException(
|
|
status_code=401,
|
|
detail='You are not authorized to initiate live updates.'
|
|
)
|
|
|
|
return files.dict()
|