Added logging, handled secrets better

2026-03-25 09:50:58 +01:00 · 2026-03-25 09:50:58 +01:00 · d8ceb50e9f
commit d8ceb50e9f
parent 197ae8d75b
4 changed files with 69 additions and 29 deletions
--- a/app.py
+++ b/app.py
@ -2,11 +2,31 @@ import os
 import yaml
 import gspread
 import secrets
+import logging
+import sys
 from flask import Flask, render_template, request, redirect, url_for, abort, session
 from datetime import datetime

+# Configure logging for Docker/Portainer
+logging.basicConfig(
+    level=logging.INFO,
+    format='%(asctime)s - %(name)s - %(levelname)s - %(message)s',
+    handlers=[logging.StreamHandler(sys.stdout)]
+)
+logger = logging.getLogger(__name__)
+
 app = Flask(__name__)
-app.secret_key = os.environ.get('SECRET_KEY', secrets.token_hex(32))
+
+# Fail-fast secret requirement (allow bypass for pytest testing)
+secret_key = os.environ.get('SECRET_KEY')
+if not secret_key:
+    if os.environ.get('TESTING_NO_APPEND') or 'pytest' in sys.modules:
+        secret_key = 'test_secret_bypassed'
+    else:
+        logger.critical("No SECRET_KEY set! Exiting. Set it in .env or Portainer Stack secrets.")
+        sys.exit(1)
+        
+app.secret_key = secret_key

 def generate_csrf_token():
    if '_csrf_token' not in session:
@ -40,7 +60,7 @@ def get_google_sheet(sheet_id, tab_name=None):
            # Default to first tab
            return sh.sheet1
    except Exception as e:
-        print(f"Error connecting to Google Sheet (ID: {sheet_id}, Tab: {tab_name}): {e}")
+        logger.error(f"Error connecting to Google Sheet (ID: {sheet_id}, Tab: {tab_name}): {e}")
        return None

 # NEW: Fetch and filter participants for public display
@ -82,7 +102,7 @@ def get_public_participants(sheet_id, tab_name=None):
            
        return public_list
    except Exception as e:
-        print(f"Error fetching participants: {e}")
+        logger.error(f"Error fetching participants: {e}")
        return []

@app.route('/')
@ -146,9 +166,15 @@ def event_form(event_slug):
        sheet = get_google_sheet(sheet_id, tab_name)
        if sheet:
            if not os.environ.get('TESTING_NO_APPEND'):
-                sheet.append_row(form_data)
+                try:
+                    sheet.append_row(form_data)
+                    logger.info(f"Successfully appended registration for {form_data[7]} to {tab_name}")
+                except Exception as e:
+                    logger.error(f"Failed to append row to {tab_name}: {e}")
+                    return f"Error appending data. Try again later."
            return redirect(url_for('success', event_slug=event_slug))
        else:
+            logger.error(f"Could not connect to tab '{tab_name}' during POST.")
            return f"Error: Could not connect to Google Sheet Tab '{tab_name}'. Check server logs."

    # GET Request: Fetch participants to show at bottom of form