Initial WIP image uploads feature

simonw · simonw · commit d513dec3ea72 · 2025-05-22T09:26:27.000-07:00
https://claude.ai/share/2328759f-9822-4cb8-80ce-2f2ab802ccda Refs #533
diff --git a/blog/image_upload.py b/blog/image_upload.py
@@ -0,0 +1,217 @@
+import os
+import boto3
+from django.views.decorators.http import require_http_methods
+from django.shortcuts import render
+from django.http import JsonResponse
+from django.core.exceptions import ValidationError
+from django.conf import settings
+from django.conf import settings
+from django import forms
+from datetime import datetime
+from botocore.exceptions import ClientError, NoCredentialsError
+
+MAX_UPLOAD_SIZE = 5 * 1024 * 1024
+ALLOWED_IMAGE_EXTENSIONS = (".jpg", ".jpeg", ".png", ".gif", ".webp")
+
+
+@require_http_methods(["GET", "POST"])
+def image_upload_view(request):
+    """Function-based view for handling image uploads"""
+
+    if request.method == "GET":
+        form = ImageUploadForm()
+        return render(request, "image_upload.html", {"form": form})
+
+    elif request.method == "POST":
+        # Check if it's an AJAX request
+        if request.headers.get("X-Requested-With") == "XMLHttpRequest":
+            try:
+                if "image" not in request.FILES:
+                    return JsonResponse(
+                        {"success": False, "error": "No image file provided"},
+                        status=400,
+                    )
+
+                image = request.FILES["image"]
+                form = ImageUploadForm(request.POST, request.FILES)
+
+                if form.is_valid():
+                    uploader = S3ImageUploader()
+                    image.seek(0)  # Reset file pointer
+                    result = uploader.upload_image(image, image.name)
+
+                    if result["success"]:
+                        return JsonResponse(result)
+                    else:
+                        return JsonResponse(result, status=500)
+                else:
+                    return JsonResponse(
+                        {"success": False, "error": list(form.errors.values())[0][0]},
+                        status=400,
+                    )
+
+            except Exception as e:
+                return JsonResponse(
+                    {"success": False, "error": "Upload failed due to server error"},
+                    status=500,
+                )
+
+        # Handle regular form submission
+        else:
+            form = ImageUploadForm(request.POST, request.FILES)
+
+            if form.is_valid():
+                image = form.cleaned_data["image"]
+                uploader = S3ImageUploader()
+                image.seek(0)
+                result = uploader.upload_image(image, image.name)
+
+                if result["success"]:
+                    return render(
+                        request,
+                        "image_upload_success.html",
+                        {"url": result["url"], "key": result["key"]},
+                    )
+                else:
+                    form.add_error("image", result["error"])
+
+            return render(request, "image_upload.html", {"form": form})
+
+
+class ImageUploadForm(forms.Form):
+    image = forms.ImageField(
+        widget=forms.ClearableFileInput(attrs={"accept": "image/*"}),
+        help_text="Upload an image file (JPG, PNG, GIF, WebP). Max size: 5MB",
+    )
+
+    def clean_image(self):
+        image = self.cleaned_data.get("image")
+
+        if not image:
+            raise ValidationError("No image file provided.")
+
+        # Check file size
+        if image.size > MAX_UPLOAD_SIZE:
+            raise ValidationError(
+                f"File size must be less than {MAX_UPLOAD_SIZE / (1024*1024):.1f}MB"
+            )
+
+        # Check file extension
+        ext = os.path.splitext(image.name)[1].lower()
+        if ext not in ALLOWED_IMAGE_EXTENSIONS:
+            raise ValidationError(
+                f"Unsupported file format. Allowed formats: {', '.join(ALLOWED_IMAGE_EXTENSIONS)}"
+            )
+
+        return image
+
+
+class S3ImageUploader:
+    def __init__(self):
+        self.s3_client = boto3.client(
+            "s3",
+            aws_access_key_id=settings.AWS_ACCESS_KEY_ID,
+            aws_secret_access_key=settings.AWS_SECRET_ACCESS_KEY,
+            region_name=settings.AWS_S3_REGION_NAME,
+        )
+        self.bucket_name = settings.AWS_STORAGE_BUCKET_NAME
+
+    def generate_s3_key(self, filename):
+        """Generate S3 key with format: static/YYYY/filename.ext"""
+        current_year = datetime.now().year
+        base_name, ext = os.path.splitext(filename)
+        # Sanitize filename (remove special characters, spaces)
+        safe_base_name = "".join(
+            c for c in base_name if c.isalnum() or c in ("-", "_")
+        ).strip()
+        if not safe_base_name:
+            safe_base_name = "image"
+
+        return f"static/{current_year}/{safe_base_name}{ext.lower()}"
+
+    def check_key_exists(self, key):
+        """Check if a key already exists in S3"""
+        try:
+            self.s3_client.head_object(Bucket=self.bucket_name, Key=key)
+            return True
+        except ClientError as e:
+            if e.response["Error"]["Code"] == "404":
+                return False
+            else:
+                raise e
+
+    def get_unique_key(self, base_key):
+        """Generate a unique key by appending numbers if necessary"""
+        if not self.check_key_exists(base_key):
+            return base_key
+
+        # Extract parts of the key
+        path_parts = base_key.split("/")
+        filename_with_ext = path_parts[-1]
+        path_prefix = "/".join(path_parts[:-1])
+
+        base_name, ext = os.path.splitext(filename_with_ext)
+
+        counter = 2
+        while counter <= 1000:  # Prevent infinite loop
+            new_filename = f"{base_name}-{counter}{ext}"
+            new_key = f"{path_prefix}/{new_filename}"
+
+            if not self.check_key_exists(new_key):
+                return new_key
+
+            counter += 1
+
+        # If we've tried 1000 variations, use timestamp
+        timestamp = int(datetime.now().timestamp())
+        fallback_filename = f"{base_name}-{timestamp}{ext}"
+        return f"{path_prefix}/{fallback_filename}"
+
+    def upload_image(self, file_obj, original_filename):
+        """Upload image to S3 and return the final key and URL"""
+        try:
+            # Generate base S3 key
+            base_key = self.generate_s3_key(original_filename)
+
+            # Get unique key (handle duplicates)
+            final_key = self.get_unique_key(base_key)
+
+            # Upload file
+            self.s3_client.upload_fileobj(
+                file_obj,
+                self.bucket_name,
+                final_key,
+                ExtraArgs={
+                    "ContentType": self._get_content_type(original_filename),
+                    "ACL": "public-read",  # Make publicly readable
+                },
+            )
+
+            # Generate public URL
+            url = f"https://static.simonwillison.net/{final_key}"
+
+            return {
+                "success": True,
+                "key": final_key,
+                "url": url,
+                "bucket": self.bucket_name,
+            }
+
+        except NoCredentialsError:
+            return {"success": False, "error": "AWS credentials not configured"}
+        except ClientError as e:
+            return {"success": False, "error": f"S3 upload failed: {str(e)}"}
+        except Exception as e:
+            return {"success": False, "error": f"Upload failed: {str(e)}"}
+
+    def _get_content_type(self, filename):
+        """Get content type based on file extension"""
+        ext = os.path.splitext(filename)[1].lower()
+        content_types = {
+            ".jpg": "image/jpeg",
+            ".jpeg": "image/jpeg",
+            ".png": "image/png",
+            ".gif": "image/gif",
+            ".webp": "image/webp",
+        }
+        return content_types.get(ext, "application/octet-stream")
diff --git a/config/settings.py b/config/settings.py
@@ -6,6 +6,13 @@
 # Build paths inside the project like this: os.path.join(BASE_DIR, ...)
 BASE_DIR = os.path.dirname(os.path.dirname(__file__))
 
+# S3 bucket for images
+AWS_ACCESS_KEY_ID = os.environ.get("AWS_ACCESS_KEY_ID") or ""
+AWS_SECRET_ACCESS_KEY = os.environ.get("AWS_SECRET_ACCESS_KEY") or ""
+AWS_STORAGE_BUCKET_NAME = (
+    os.environ.get("AWS_STORAGE_BUCKET_NAME") or "static.simonwillison.net"
+)
+AWS_S3_REGION_NAME = os.environ.get("AWS_S3_REGION_NAME") or "us-east-1"
 
 # Quick-start development settings - unsuitable for production
 # See https://docs.djangoproject.com/en/1.8/howto/deployment/checklist/
diff --git a/config/urls.py b/config/urls.py
@@ -18,6 +18,7 @@
 import importlib.metadata
 import json
 from proxy.views import proxy_view
+from blog.image_upload import image_upload_view
 
 
 handler404 = "blog.views.custom_404"
@@ -164,6 +165,7 @@ def versions(request):
     re_path(r"^write/$", blog_views.write),
     #  (r'^about/$', blog_views.about),
     path("admin/bulk-tag/", blog_views.bulk_tag, name="bulk_tag"),
+    path("admin/upload-image/", image_upload_view, name="image_upload"),
     path("api/add-tag/", blog_views.api_add_tag, name="api_add_tag"),
     re_path(r"^admin/", admin.site.urls),
     re_path(r"^static/", static_redirect),
diff --git a/requirements.txt b/requirements.txt
@@ -1,4 +1,6 @@
+pillow==11.2.1
 arrow==1.3.0
+boto3==1.38.21
 beautifulsoup4==4.12.3
 django-http-debug==0.2
 cloudflare==3.1.1
diff --git a/templates/image_upload.html b/templates/image_upload.html
@@ -0,0 +1,63 @@
+{% extends "item_base.html" %}
+
+{% block title %}Upload image{% endblock %}
+
+{% block item_content %}
+<h2>Upload Image</h2>
+    
+    <form method="post" enctype="multipart/form-data">
+        {% csrf_token %}
+        {{ form.as_p }}
+        <button type="submit">Upload</button>
+    </form>
+    
+    <!-- AJAX Upload Example -->
+    <div id="ajax-upload" style="margin-top: 30px;">
+        <h3>AJAX Upload</h3>
+        <input type="file" id="ajax-file" accept="image/*">
+        <button onclick="uploadAjax()">Upload via AJAX</button>
+        <div id="upload-status"></div>
+    </div>
+    
+    <script>
+    function uploadAjax() {
+        const fileInput = document.getElementById('ajax-file');
+        const statusDiv = document.getElementById('upload-status');
+        
+        if (!fileInput.files[0]) {
+            statusDiv.innerHTML = '<p style="color: red;">Please select a file</p>';
+            return;
+        }
+        
+        const formData = new FormData();
+        formData.append('image', fileInput.files[0]);
+        
+        statusDiv.innerHTML = '<p>Uploading...</p>';
+        
+        fetch('{% url "image_upload" %}', {
+            method: 'POST',
+            body: formData,
+            headers: {
+                'X-Requested-With': 'XMLHttpRequest',
+                'X-CSRFToken': '{{ csrf_token }}'
+            }
+        })
+        .then(response => response.json())
+        .then(data => {
+            if (data.success) {
+                statusDiv.innerHTML = `
+                    <p style="color: green;">Upload successful!</p>
+                    <p>URL: <a href="${data.url}" target="_blank">${data.url}</a></p>
+                    <p>S3 Key: ${data.key}</p>
+                `;
+            } else {
+                statusDiv.innerHTML = `<p style="color: red;">Error: ${data.error}</p>`;
+            }
+        })
+        .catch(error => {
+            statusDiv.innerHTML = `<p style="color: red;">Upload failed: ${error}</p>`;
+        });
+    }
+    </script>
+
+{% endblock %}
diff --git a/templates/image_upload_success.html b/templates/image_upload_success.html
@@ -0,0 +1,12 @@
+{% extends "item_base.html" %}
+
+{% block title %}Upload image{% endblock %}
+
+{% block item_content %}
+    <h2>Upload Successful!</h2>
+    <p><strong>Image URL:</strong> <a href="{{ url }}" target="_blank">{{ url }}</a></p>
+    <p><strong>S3 Key:</strong> {{ key }}</p>
+    <img src="{{ url }}" alt="Uploaded image" style="max-width: 500px; max-height: 500px;">
+    <br><br>
+    <a href="{% url 'image_upload' %}">Upload Another Image</a>
+{% endblock %}
