PGŽ Sport Platform — Round 1+2 baseline (sport2.html + API)

2026-05-04 23:39:08 +02:00
commit a7ec0a86be
1820 changed files with 694455 additions and 0 deletions
@@ -0,0 +1,56 @@
+"""Image proxy endpoint za HNS/HBS/external slike - rješava CORS + cache."""
+import hashlib, os, time
+from fastapi import APIRouter, HTTPException, Response
+from fastapi.responses import StreamingResponse
+import requests, redis
+
+CACHE_DIR = "/var/cache/pgz-sport-img"
+os.makedirs(CACHE_DIR, exist_ok=True)
+ALLOWED_DOMAINS = ('hns.family', 'hns.hr', 'hbs.hr', 'hrvatski-bocarski-savez.hr', 
+                   'rk-zamet.hr', 'hvs.hr', 'rezultati.hvs.hr', 'sport-pgz.hr')
+MAX_AGE = 86400 * 7  # 7 dana
+
+try:
+    rds = redis.Redis(host='localhost', port=6379, db=2)
+    rds.ping()
+except: rds = None
+
+router = APIRouter()
+
+@router.get("/img-proxy")
+def proxy_image(u: str):
+    if not u.startswith(('http://', 'https://')):
+        raise HTTPException(400, "Invalid URL")
+    if not any(d in u for d in ALLOWED_DOMAINS):
+        raise HTTPException(403, "Domain not allowed")
+    
+    # Cache key
+    h = hashlib.sha1(u.encode()).hexdigest()
+    cf = os.path.join(CACHE_DIR, h)
+    
+    # Disk cache check
+    if os.path.exists(cf) and (time.time() - os.path.getmtime(cf)) < MAX_AGE:
+        with open(cf+'.ct') as f: ct = f.read().strip()
+        with open(cf, 'rb') as f: data = f.read()
+        return Response(content=data, media_type=ct, headers={
+            "Access-Control-Allow-Origin": "*",
+            "Cache-Control": "public, max-age=604800",
+            "X-Proxy-Cache": "HIT"
+        })
+    
+    # Fetch from origin
+    try:
+        r = requests.get(u, timeout=10, headers={"User-Agent": "RiNET-Civic/1.0"})
+        if r.status_code != 200:
+            raise HTTPException(r.status_code, f"Origin returned {r.status_code}")
+        ct = r.headers.get('content-type', 'image/jpeg')
+        # Save to cache
+        with open(cf, 'wb') as f: f.write(r.content)
+        with open(cf+'.ct', 'w') as f: f.write(ct)
+        return Response(content=r.content, media_type=ct, headers={
+            "Access-Control-Allow-Origin": "*",
+            "Cache-Control": "public, max-age=604800",
+            "X-Proxy-Cache": "MISS"
+        })
+    except requests.RequestException as e:
+        raise HTTPException(502, f"Origin fetch failed: {e}")