CreeperIsASpy
diff --git a/‎.gitignore
Lines changed: 1 addition & 0 deletions b/‎.gitignore
Lines changed: 1 addition & 0 deletions
diff --git a/‎app/__init__.py
Lines changed: 4 additions & 0 deletions b/‎app/__init__.py
Lines changed: 4 additions & 0 deletions
diff --git a/‎app/auth.py
Lines changed: 2 additions & 1 deletion b/‎app/auth.py
Lines changed: 2 additions & 1 deletion
diff --git a/‎app/md_processor.py
Lines changed: 25 additions & 0 deletions b/‎app/md_processor.py
Lines changed: 25 additions & 0 deletions
diff --git a/‎app/models.py
Lines changed: 13 additions & 0 deletions b/‎app/models.py
Lines changed: 13 additions & 0 deletions
diff --git a/‎app/routes.py
Lines changed: 67 additions & 12 deletions b/‎app/routes.py
Lines changed: 67 additions & 12 deletions
diff --git a/‎app/static/css/styles.css
Lines changed: 56 additions & 1 deletion b/‎app/static/css/styles.css
Lines changed: 56 additions & 1 deletion
diff --git a/‎app/templates/404.html
Lines changed: 12 additions & 0 deletions b/‎app/templates/404.html
Lines changed: 12 additions & 0 deletions
diff --git a/‎app/templates/500.html
Lines changed: 15 additions & 0 deletions b/‎app/templates/500.html
Lines changed: 15 additions & 0 deletions
diff --git a/‎app/templates/index.html
Lines changed: 22 additions & 1 deletion b/‎app/templates/index.html
Lines changed: 22 additions & 1 deletion
@@ -1,4 +1,5 @@
 *.db
+future_devs.md
 /__pycache__/
 /.idea/
 /venv/
 
@@ -1,11 +1,15 @@
 from flask import Flask
 from flask_login import LoginManager
+from flask_mail import Mail
 from sqlmodel import SQLModel, create_engine
 from config import Config
 
+mail = Mail()
+
 # Initialize Flask app
 app = Flask(__name__)
 app.config.from_object(Config)
+mail.init_app(app)
 
 # Initialize Flask-Login
 login_manager = LoginManager()
 
@@ -21,7 +21,7 @@ def login():
                 login_user(user)  # 登录用户
                 return redirect(url_for('main.dashboard'))
             else:
-                flash('Invalid username or password')
+                flash('用户名或密码错误！')
     return render_template('login.html')
 
 
@@ -46,4 +46,5 @@ def register():
 @login_required
 def logout():
     logout_user()
+    flash('你已登出！')
     return redirect(url_for('main.index'))
@@ -0,0 +1,25 @@
+from flask import url_for
+
+from markdown.extensions import Extension
+from markdown.inlinepatterns import ImageInlineProcessor, IMAGE_LINK_RE
+import xml.etree.ElementTree as etree
+
+
+class CustomImageInlineProcessor(ImageInlineProcessor):
+    """自定义 Markdown 图片处理器"""
+
+    def handleMatch(self, m, data):
+        el = etree.Element("img")
+        src = m.group(2)
+        if src.startswith("/static/"):
+            src = url_for('static', filename=src[8:])  # 将 /static/ 路径转换为 Flask 的静态文件 URL
+        el.set("src", src)
+        el.set("alt", m.group(1))
+        return el, m.start(0), m.end(0)
+
+
+class CustomMarkdownExtension(Extension):
+    """自定义 Markdown 扩展"""
+
+    def extendMarkdown(self, md):
+        md.inlinePatterns.register(CustomImageInlineProcessor(IMAGE_LINK_RE, md), 'image', 150)
@@ -8,9 +8,11 @@ class User(SQLModel, table=True):
     username: str = Field(index=True)
     email: str = Field(index=True)
     password_hash: str
+    is_admin: bool = Field(default=False)
 
     posts: List["Post"] = Relationship(back_populates="author")
     comments: List["Comment"] = Relationship(back_populates="author")
+    likes: List["Like"] = Relationship(back_populates="user")  # 用户点赞的博文
 
     # Flask-Login 所需的属性和方法
     @property
@@ -39,6 +41,7 @@ class Post(SQLModel, table=True):
 
     author: User = Relationship(back_populates="posts")
     comments: List["Comment"] = Relationship(back_populates="post")
+    likes: List["Like"] = Relationship(back_populates="post")  # 博文的点赞
 
 
 class Comment(SQLModel, table=True):
@@ -51,3 +54,13 @@ class Comment(SQLModel, table=True):
 
     author: User = Relationship(back_populates="comments")
     post: Post = Relationship(back_populates="comments")
+
+
+class Like(SQLModel, table=True):
+    id: Optional[int] = Field(default=None, primary_key=True)
+    user_id: int = Field(foreign_key="user.id")  # 点赞用户
+    post_id: int = Field(foreign_key="post.id")  # 被点赞的博文
+
+    # 关系
+    user: "User" = Relationship(back_populates="likes")
+    post: "Post" = Relationship(back_populates="likes")
@@ -1,12 +1,14 @@
 import markdown
 from flask import Blueprint, render_template, request, url_for, flash
 from flask_login import login_required, current_user
+from sqlalchemy import func
 from sqlmodel import Session, select, desc
 from werkzeug.utils import redirect
 from datetime import datetime
 
-from app import engine
-from app.models import Post, User, Comment
+from app import engine, app, mail
+from app.md_processor import CustomMarkdownExtension
+from app.models import Post, User, Comment, Like
 from app.forms import CommentForm, EditCommentForm, PostForm
 
 # 创建蓝图
@@ -22,7 +24,16 @@ def index():
             .order_by(desc(Post.created_at))
             .limit(10)
         ).all()
-        return render_template('index.html', posts=posts, datetime=datetime, len=len)
+
+        popular_posts = session.exec(
+            select(Post)
+            .order_by(desc(func.count(Like.id)))
+            .join(Like, isouter=True)
+            .group_by(Post.id)
+            .limit(5)
+        ).all()
+
+        return render_template('index.html', posts=posts, datetime=datetime, len=len, popular_posts=popular_posts)
 
 
 @main.route('/dashboard')
@@ -47,7 +58,9 @@ def dashboard():
 def create_post():
     form = PostForm()
     if form.validate_on_submit():
-        html_content = markdown.markdown(form.content.data)  # 解析 Markdown
+        html_content = markdown.Markdown(
+            extensions=[CustomMarkdownExtension()]
+        ).convert(form.content.data)  # 解析 Markdown
         new_post = Post(
             title=form.title.data,
             content=form.content.data,
@@ -78,7 +91,9 @@ def view_post(post_id):
 def add_comment(post_id):
     form = CommentForm()
     if form.validate_on_submit():
-        html_content = markdown.markdown(form.content.data)  # 解析 Markdown
+        html_content = markdown.Markdown(
+            extensions=[CustomMarkdownExtension()]
+        ).convert(form.content.data)  # 解析 Markdown
         new_comment = Comment(
             content=form.content.data,
             html_content=html_content,
@@ -100,7 +115,7 @@ def edit_post(post_id):
         if not post:
             flash('博文未找到!')
             return redirect(url_for('main.dashboard'))
-        if post.author_id != current_user.id:
+        if post.author_id != current_user.id and not current_user.is_admin:
             flash('你没有编辑这篇博文的权限!')
             return redirect(url_for('main.dashboard'))
 
@@ -113,7 +128,9 @@ def edit_post(post_id):
             else:
                 post.title = title
                 post.content = content
-                post.html_content = markdown.markdown(content)
+                post.html_content = markdown.Markdown(
+                    extensions=[CustomMarkdownExtension()]
+                ).convert(content)  # 转换 Markdown
                 session.commit()
                 flash('你的博文已被更新!')
                 return redirect(url_for('main.view_post', post_id=post.id))
@@ -129,8 +146,8 @@ def delete_post(post_id):
         if not post:
             flash('博文未找到!')
             return redirect(url_for('main.dashboard'))
-        if post.author_id != current_user.id:
-            flash('你没有编辑这篇博文的权限!')
+        if post.author_id != current_user.id and not current_user.is_admin:
+            flash('你没有删除这篇博文的权限!')
             return redirect(url_for('main.dashboard'))
 
         session.delete(post)
@@ -147,14 +164,16 @@ def edit_comment(comment_id):
         if not comment:
             flash('评论未找到！', 'error')
             return redirect(url_for('main.index'))
-        if comment.author_id != current_user.id:
+        if comment.author_id != current_user.id and not current_user.is_admin:
             flash('你没有权限编辑这条评论！', 'error')
             return redirect(url_for('main.view_post', post_id=comment.post_id))
 
         form = EditCommentForm()
         if form.validate_on_submit():
             comment.content = form.content.data
-            comment.html_content = markdown.markdown(form.content.data)  # 解析 Markdown
+            comment.html_content = markdown.Markdown(
+                extensions=[CustomMarkdownExtension()]
+            ).convert(form.content.data)  # 解析 Markdown
             session.commit()
             flash('评论已更新！', 'success')
             return redirect(url_for('main.view_post', post_id=comment.post_id))
@@ -173,7 +192,7 @@ def delete_comment(comment_id):
         if not comment:
             flash('评论未找到！', 'error')
             return redirect(url_for('main.index'))
-        if comment.author_id != current_user.id:
+        if comment.author_id != current_user.id and not current_user.is_admin:
             flash('你没有权限删除这条评论！', 'error')
             return redirect(url_for('main.view_post', post_id=comment.post_id))
 
@@ -182,3 +201,39 @@ def delete_comment(comment_id):
         session.commit()
         flash('评论已删除！', 'success')
         return redirect(url_for('main.view_post', post_id=post_id))
+
+
+@main.route('/post/<int:post_id>/like', methods=['POST'])
+@login_required
+def like_post(post_id):
+    with Session(engine) as session:
+        # 检查用户是否已经点赞过该博文
+        existing_like = session.exec(
+            select(Like)
+            .where(Like.user_id == current_user.id)
+            .where(Like.post_id == post_id)
+        ).first()
+
+        if existing_like:
+            # 如果已经点赞过，取消点赞
+            session.delete(existing_like)
+            session.commit()
+            flash('已取消点赞！', 'info')
+        else:
+            # 如果未点赞过，添加点赞
+            new_like = Like(user_id=current_user.id, post_id=post_id)
+            session.add(new_like)
+            session.commit()
+            flash('点赞成功！', 'success')
+        return redirect(url_for('main.view_post', post_id=post_id))
+
+
+@app.errorhandler(404)
+def page_not_found(error):
+    return render_template('404.html'), 404
+
+
+@app.errorhandler(500)
+def internal_server_error(error):
+    return render_template('500.html', error=error), 500
+
@@ -66,6 +66,11 @@ footer {
     right: 0;
 }
 
+.hint {
+    mso-foreground: #6c757d;
+    opacity: 50%;
+}
+
 /* 通用按钮样式 */
 .form-button {
     display: inline-block;
@@ -301,6 +306,7 @@ footer {
 /* 评论列表 */
 .comment-list {
     margin-top: 40px;
+    margin-bottom: 80px;
 }
 
 .comment-list h3 {
@@ -341,4 +347,53 @@ footer {
 
 .comment-actions .action-button {
     margin-right: 10px;
-}
+}
+
+/* 点赞按钮 */
+.like-button {
+    background-color: #28a745;
+    color: white;
+}
+
+.like-button:hover {
+    background-color: #218838;
+}
+
+/* 点赞数 */
+.like-count {
+    margin-left: 10px;
+    font-size: 0.9rem;
+    color: #666;
+}
+
+/* 错误页面容器 */
+.error-container {
+    max-width: 600px;
+    margin: 50px auto;
+    padding: 20px;
+    background-color: #ffffff;
+    border-radius: 10px;
+    box-shadow: 0 4px 8px rgba(0, 0, 0, 0.1);
+    text-align: center;
+}
+
+.error-container h1 {
+    font-size: 2rem;
+    color: #dc3545;
+    margin-bottom: 20px;
+}
+
+.error-container p {
+    font-size: 1rem;
+    color: #333;
+    margin-bottom: 20px;
+}
+
+.error-container a {
+    color: #007bff;
+    text-decoration: none;
+}
+
+.error-container a:hover {
+    text-decoration: underline;
+}
@@ -0,0 +1,12 @@
+{% extends "base.html" %}
+
+{% block title %}页面未找到 - 六(5)班 班级博客{% endblock %}
+
+{% block content %}
+    <div class="error-container">
+        <h1>404 - 页面未找到</h1>
+        <p>抱歉，您访问的页面不存在。</p>
+        <p>如果您是手动输入了页面 URL，请检查您的拼写是否有错误。</p>
+        <p>点击 <a href="{{ url_for('main.index') }}">这里</a> 返回首页。</p>
+    </div>
+{% endblock %}
@@ -0,0 +1,15 @@
+{% extends "base.html" %}
+
+{% block title %}服务器错误 - 六(5)班 班级博客{% endblock %}
+
+{% block content %}
+    <div class="error-container">
+        <h1>500 - 服务器内部错误</h1>
+        <p>抱歉，服务器在处理您的请求时发生了内部错误。</p>
+        <p>如果可能，请向服务器的开发者反馈该问题，并提供完整的复现流程。</p>
+        <p>请稍后重试，或返回 <a href="{{ url_for('main.index') }}">首页</a>。</p>
+
+        <p>详细错误信息：</p>
+        <p>{{ error[:80] | safe }}</p>
+    </div>
+{% endblock %}
@@ -12,15 +12,36 @@ <h2>最新博文精选</h2>
             {% for post in posts %}
                 <li class="post-item">
                     <h3><a href="{{ url_for('main.view_post', post_id=post.id) }}" class="post-link">{{ post.title }}</a></h3>
-                    <p>作者：{{ post.author.username }} | 发布时间：{{ post.created_at.strftime('%Y-%m-%d %T') }}</p>
+                    <p>作者：{{ post.author.username }} | 发布时间：{{ post.created_at.strftime('%Y-%m-%d %T') }} | <em class="hint">Markdown 格式预览不可用……</em></p>
                     <p>{{ (post.content[:80] + '...') if (len(post.content) > 80) else post.content }}</p>
+                    <div class="post-meta">
+                        <span class="like-count">👍 {{ post.likes|length }} 人点赞</span>
+                    </div>
                 </li>
             {% endfor %}
         </ul>
     {% else %}
         <p>还没有人发布博文，快来成为第一个吧！</p>
     {% endif %}
 
+    <h2>最受欢迎博文</h2>
+    {% if popular_posts %}
+        <ul class="post-list">
+            {% for post in popular_posts %}
+                <li class="post-item">
+                    <h3><a href="{{ url_for('main.view_post', post_id=post.id) }}" class="post-link">{{ post.title }}</a></h3>
+                    <p>作者：{{ post.author.username }} | 发布时间：{{ post.created_at }} | <em class="hint">Markdown 格式预览不可用……</em></p>
+                    <p>{{ (post.content[:80] + '...') if (len(post.content) > 80) else post.content }}</p>
+                    <div class="post-meta">
+                        <span class="like-count">👍 {{ post.likes|length }} 人点赞</span>
+                    </div>
+                </li>
+            {% endfor %}
+        </ul>
+    {% else %}
+        <p>还没有博文被点赞。</p>
+    {% endif %}
+
     {% if current_user.is_authenticated %}
         <button onclick="window.location.href='{{ url_for('main.create_post') }}'" class="form-button">发布一篇新的博文！</button>
     {% else %}
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`	`1`	`*.db`
	`2`	`+future_devs.md`
`2`	`3`	`/__pycache__/`
`3`	`4`	`/.idea/`
`4`	`5`	`/venv/`