From b464adf0e95fed2472fcd246fb54870a2fcdbc56 Mon Sep 17 00:00:00 2001
From: Erik Moeller <erik@freedom.press>
Date: Wed, 12 Aug 2020 17:36:55 -0700
Subject: [PATCH] Add Weblate screenshot uploader tool

Uploads all page layout test results via Weblate's API, replacing
existing screenshots as appropriate by matching filenames against
canonicalized titles.
---
 docs/development/i18n.rst        |  25 ++++
 securedrop/upload-screenshots.py | 218 +++++++++++++++++++++++++++++++
 2 files changed, 243 insertions(+)
 create mode 100755 securedrop/upload-screenshots.py

diff --git a/docs/development/i18n.rst b/docs/development/i18n.rst
index 70e835c510..8091f11c52 100644
--- a/docs/development/i18n.rst
+++ b/docs/development/i18n.rst
@@ -342,6 +342,31 @@ request.
 
 .. _i18n_release:
 
+
+Update Weblate screenshots
+^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+You can use the script ``securedrop/upload_screenshots.py`` to update
+UI screenshots that are used to illustrate strings in Weblate. The script
+depends on the existence of up-to-date layout test results, which you can
+generate using this command in the base directory:
+
+.. code:: sh
+
+    $ LOCALES=en_US make translation-test
+
+`Obtain your API key <https://weblate.securedrop.org/accounts/profile/#api>`__
+in Weblate. Export the token to the environment variable ``WEBLATE_TOKEN``.
+You can now run this command to perform an upload:
+
+.. code:: sh
+
+    $ securedrop/upload-screenshots.py --token $WEBLATE_TOKEN
+
+If new screenshots were added as part of this run, make sure to associate them
+with relevant strings in Weblate, which you can do from the
+`screenshots list <https://weblate.securedrop.org/screenshots/securedrop/securedrop/>`__.
+
 Release Management
 ------------------
 
diff --git a/securedrop/upload-screenshots.py b/securedrop/upload-screenshots.py
new file mode 100755
index 0000000000..d8baafecad
--- /dev/null
+++ b/securedrop/upload-screenshots.py
@@ -0,0 +1,218 @@
+#!/usr/bin/env python3
+
+from glob import glob
+from urllib.parse import urljoin
+
+import os
+import argparse
+import re
+import requests
+import sys
+
+# Used to generate URLs for API endpoints and links; exposed as argument
+DEFAULT_BASE_URL = "https://weblate.securedrop.org"
+
+# Where we look for screenshots: the page layout test results in English
+SCREENSHOTS_DIRECTORY = os.path.abspath(
+    os.path.join(os.path.dirname(__file__), "tests/pageslayout/screenshots/en_US")
+)
+
+# What pattern we expect them to match
+SCREENSHOTS_GLOB = "*.png"
+
+# Regular expression rules that are applied sequentially to transform a
+# filename into the canonical title we give that screenshot in Weblate.
+#
+# Example conversion: "source-session_timeout.png" -> "source: session timeout"
+CANONICALIZATION_RULES = [(r"\.png$", ""), (r"-", ": "), (r"_", " ")]
+
+# Weblate organizes internationalization work into projects and components,
+# which are part of many URLs, and need to be referenced in some API requests.
+PROJECT_SLUG = "securedrop"
+COMPONENT_SLUG = "securedrop"
+
+# Request limit for the number of pagination requests to issue before aborting.
+REQUEST_LIMIT = 50
+
+
+def main():
+    """
+    Uses the generic WeblateUploader class below to run a SecureDrop screenshot
+    upload.
+    """
+    parser = argparse.ArgumentParser(
+        formatter_class=argparse.ArgumentDefaultsHelpFormatter
+    )
+    parser.add_argument(
+        "--token",
+        help="API token for accessing the weblate API",
+        type=str,
+        required=True,
+    )
+    parser.add_argument(
+        "--baseURL",
+        help="Weblate base URL",
+        default=DEFAULT_BASE_URL,
+        type=str,
+        required=False,
+    )
+    args = parser.parse_args()
+
+    screenshot_files = glob(os.path.join(SCREENSHOTS_DIRECTORY, SCREENSHOTS_GLOB))
+    if len(screenshot_files) == 0:
+        print(
+            "Page layout test results not found. Run this command from the SecureDrop"
+        )
+        print("base directory to generate the English language screenshots:\n")
+        print("  LOCALES=en_US make translation-test")
+        print("\nThis will take several minutes to complete.")
+        sys.exit(1)
+
+    uploader = WeblateUploader(
+        token=args.token,
+        base_url=args.baseURL,
+        project=PROJECT_SLUG,
+        component=COMPONENT_SLUG,
+        files=screenshot_files,
+        request_limit=REQUEST_LIMIT,
+        canonicalization_rules=CANONICALIZATION_RULES,
+    )
+    uploader.safe_upload()
+
+
+class WeblateUploader(object):
+    """
+    Manages Weblate screenshot batch uploads, matching filenames against
+    titles of existing screenshots to create/update as appropriate.
+    """
+
+    def __init__(
+        self,
+        token,
+        base_url,
+        project,
+        component,
+        files,
+        request_limit,
+        canonicalization_rules=[],
+    ):
+
+        if len(token) != 40:
+            msg = (
+                "API token is not in expected 40 character format.\n"
+                "Obtain token via {}".format(urljoin(base_url, "accounts/profile/#api"))
+            )
+            raise BadTokenError(msg)
+
+        self.base_url = base_url
+        self.screenshots_endpoint = urljoin(base_url, "/api/screenshots/")
+        self.project = project
+        self.component = component
+        self.files = files
+        self.request_limit = request_limit
+        self.canonicalization_rules = canonicalization_rules
+        self.user_agent = "Python Weblate Uploader V1.0"
+
+        # While not all requests require authentication, any useful operation of this
+        # script does, and providing a token for all requests ensures we avoid hitting
+        # the rate limit for unauthenticated users. See:
+        # https://docs.weblate.org/en/latest/api.html#rate-limiting
+        self.session = requests.Session()
+        headers = {
+            "User-Agent": self.user_agent,
+            "Authorization": "Token {}".format(token),
+        }
+        self.session.headers.update(headers)
+
+    def safe_upload(self):
+        """
+        Uploads all files using the screenshots endpoint. Prior to uploading,
+        obtains the list of all existing screenshots. If a file with a
+        canonicalized title that corresponds to the filename already exists,
+        it will be updated, instead of a new upload being created.
+        """
+        existing_screenshots = self.get_existing_screenshots()
+        self.upload(existing_screenshots)
+
+    def get_existing_screenshots(self):
+        """
+        Obtains a list of all existing screenshots, and returns it as a list
+        in the API's format. Paginates up to the request limit.
+        """
+        next_screenshots_url = self.screenshots_endpoint
+
+        # API results are paginated, so we must loop through a set of results and
+        # concatenate them.
+        screenshots = []
+        request_count = 0
+        while next_screenshots_url is not None:
+            response = self.session.get(next_screenshots_url)
+            response.raise_for_status()
+            screenshots_page = response.json()
+            next_screenshots_url = screenshots_page["next"]
+            screenshots += screenshots_page["results"]
+            request_count += 1
+            if request_count >= self.request_limit:
+                msg = "Request limit of {} exceeded. Aborting.".format(
+                    self.request_limit
+                )
+                raise RequestLimitError(msg)
+        return screenshots
+
+    def _canonicalize(self, filename):
+        """
+        Derives a human-readable title from a filename using the defined
+        canonicalization rules, if any. This is used to later update the
+        screenshot.
+        """
+        for pattern, repl in self.canonicalization_rules:
+            filename = re.sub(pattern, repl, filename)
+        return filename
+
+    def upload(self, existing_screenshots=[]):
+        """
+        Uploads all files using the screenshots endpoint. Optionally, checks
+        files against a list of existing screenshots and replaces them rather
+        than creating new uploads.
+        """
+        for file in self.files:
+            basename = os.path.basename(file)
+            canonical_name = self._canonicalize(basename)
+            existing_screenshot_url = None
+            for screenshot in existing_screenshots:
+                if screenshot["name"] == canonical_name:
+                    existing_screenshot_url = screenshot["file_url"]
+                    break
+            image = {"image": open(file, "rb")}
+            if existing_screenshot_url is not None:
+                print("Replacing existing screenshot {}".format(basename))
+                response = self.session.post(existing_screenshot_url, files=image)
+                response.raise_for_status()
+            else:
+                fields = {
+                    "name": canonical_name,
+                    "project_slug": "securedrop",
+                    "component_slug": "securedrop",
+                }
+                print("Uploading new screenshot {}".format(basename))
+                response = self.session.post(
+                    self.screenshots_endpoint, files=image, data=fields
+                )
+                response.raise_for_status()
+
+        result_url = urljoin(
+            self.base_url, "screenshots/{}/{}".format(self.project, self.component)
+        )
+        print("Upload complete. Visit {} to review the results.".format(result_url))
+
+
+class BadTokenError(Exception):
+    pass
+
+
+class RequestLimitError(Exception):
+    pass
+
+
+if __name__ == "__main__":
+    main()