analytics/lib/plausible_web/controllers/stats_controller.ex

defmodule PlausibleWeb.StatsController do
  use PlausibleWeb, :controller
  use Plausible.Repo
  alias Plausible.Stats

  def stats(conn, %{"website" => website}) do
    site = Repo.get_by(Plausible.Site, domain: website)

    if site && current_user_can_access?(conn, site) do
      user = conn.assigns[:current_user]
      if user && Plausible.Billing.needs_to_upgrade?(conn.assigns[:current_user]) do
        redirect(conn, to: "/billing/upgrade")
      else
        if Plausible.Sites.has_pageviews?(site) do
          demo = site.domain == "plausible.io"
          offer_email_report = get_session(conn, site.domain <> "_offer_email_report")

          conn
          |> assign(:skip_plausible_tracking, !demo)
          |> remove_email_report_banner(site)
          |> put_resp_header("x-robots-tag", "noindex")
          |> render("stats.html",
            site: site,
            has_goals: Plausible.Sites.has_goals?(site),
            title: "Plausible · " <> site.domain,
            offer_email_report: offer_email_report,
            demo: demo
          )
        else
          conn
          |> assign(:skip_plausible_tracking, true)
          |> render("waiting_first_pageview.html", site: site)
        end
      end
    else
      render_error(conn, 404)
    end
  end

  def csv_export(conn, %{"website" => website}) do
    site = Repo.get_by(Plausible.Site, domain: website)

    if site && current_user_can_access?(conn, site) do
      query = Stats.Query.from(site.timezone, conn.params)
      {plot, _, labels, _} = Stats.calculate_plot(site, query)
      csv_content = Enum.zip(labels, plot)
                    |> Enum.map(fn {k, v} -> [k, v] end)
                    |> (fn data -> [["Date", "Visitors"] | data] end).()
                    |> CSV.encode
                    |> Enum.into([])
                    |> Enum.join()

      filename = "Visitors #{website} #{Timex.format!(query.date_range.first, "{ISOdate} ")} to #{Timex.format!(query.date_range.last, "{ISOdate} ")}.csv"

      conn
      |> put_resp_content_type("text/csv")
      |> put_resp_header("content-disposition", "attachment; filename=\"#{filename}\"")
      |> send_resp(200, csv_content)
    else
      render_error(conn, 404)
    end
  end

  def shared_link(conn, %{"slug" => slug}) do
    shared_link = Repo.get_by(Plausible.Site.SharedLink, slug: slug)
                  |> Repo.preload(:site)

    if shared_link do
      if shared_link.password_hash do
        render(conn, "shared_link_password.html", link: shared_link, layout: {PlausibleWeb.LayoutView, "focus.html"})
      else
        shared_link_auth_success(conn, shared_link)
      end
    else
      render_error(conn, 404)
    end
  end

  def authenticate_shared_link(conn, %{"slug" => slug, "password" => password}) do
    shared_link = Repo.get_by(Plausible.Site.SharedLink, slug: slug)
                  |> Repo.preload(:site)

    if shared_link do
      if Plausible.Auth.Password.match?(password, shared_link.password_hash) do
        shared_link_auth_success(conn, shared_link)
      else
        render(conn, "shared_link_password.html", link: shared_link, error: "Incorrect password. Please try again.", layout: {PlausibleWeb.LayoutView, "focus.html"})
      end
    else
      render_error(conn, 404)
    end
  end

  defp shared_link_auth_success(conn, shared_link) do
    site_session_key = "authorized_site__" <> shared_link.site.domain

    conn
    |> put_session(site_session_key, %{
      id: shared_link.site.id,
      domain: shared_link.site.domain,
      timezone: shared_link.site.timezone,
      valid_until: Timex.now() |> Timex.shift(minutes: 30) |> DateTime.to_unix()
    })
    |> redirect(to: "/#{shared_link.site.domain}")
  end

  defp current_user_can_access?(_conn, %Plausible.Site{public: true}) do
    true
  end

  defp current_user_can_access?(conn, site) do
    site_session_key = "authorized_site__" <> site.domain
    site_session = get_session(conn, site_session_key)
    valid_site_session = site_session && site_session[:valid_until] > DateTime.to_unix(Timex.now())

    valid_site_session || current_user_is_owner?(conn, site)
  end

  defp current_user_is_owner?(conn, site) do
    case conn.assigns[:current_user] do
      nil -> false
      user -> Plausible.Sites.is_owner?(user.id, site)
    end
  end

  defp remove_email_report_banner(conn, site) do
    if conn.assigns[:current_user] do
      put_session(conn, site.domain <> "_offer_email_report", nil)
    else
      conn
    end
  end
end
Initial commit 2019-09-02 14:29:19 +03:00			`defmodule PlausibleWeb.StatsController do`
			`use PlausibleWeb, :controller`
			`use Plausible.Repo`
Export main graph as csv (#24) * Export main graph as csv * Remove unused deps from mix-lock * Update bamboo dependency 2020-01-13 16:16:35 +03:00			`alias Plausible.Stats`
Initial commit 2019-09-02 14:29:19 +03:00
			`def stats(conn, %{"website" => website}) do`
			`site = Repo.get_by(Plausible.Site, domain: website)`

			`if site && current_user_can_access?(conn, site) do`
			`user = conn.assigns[:current_user]`
			`if user && Plausible.Billing.needs_to_upgrade?(conn.assigns[:current_user]) do`
			`redirect(conn, to: "/billing/upgrade")`
			`else`
			`if Plausible.Sites.has_pageviews?(site) do`
Revert "Track visits to public sites" This reverts commit 7a9a0f9ea02072fbf639ce528170e0357261d1af. 2019-11-26 07:08:33 +03:00			`demo = site.domain == "plausible.io"`
Offer new sites to set up weekly reports 2019-09-10 18:51:34 +03:00			`offer_email_report = get_session(conn, site.domain <> "_offer_email_report")`
Initial commit 2019-09-02 14:29:19 +03:00
			`conn`
Revert "Track visits to public sites" This reverts commit 7a9a0f9ea02072fbf639ce528170e0357261d1af. 2019-11-26 07:08:33 +03:00			`\|> assign(:skip_plausible_tracking, !demo)`
Don't set session if user isn't logged in 2020-04-13 15:14:16 +03:00			`\|> remove_email_report_banner(site)`
Don't allow google to index the stats page 2020-03-17 16:14:50 +03:00			`\|> put_resp_header("x-robots-tag", "noindex")`
Initial commit 2019-09-02 14:29:19 +03:00			`\|> render("stats.html",`
			`site: site,`
Show goals to anon vistitors 2019-11-28 07:44:31 +03:00			`has_goals: Plausible.Sites.has_goals?(site),`
Offer new sites to set up weekly reports 2019-09-10 18:51:34 +03:00			`title: "Plausible · " <> site.domain,`
Add CTA to the demo page 2020-04-02 15:50:42 +03:00			`offer_email_report: offer_email_report,`
			`demo: demo`
Offer new sites to set up weekly reports 2019-09-10 18:51:34 +03:00			`)`
Initial commit 2019-09-02 14:29:19 +03:00			`else`
			`conn`
			`\|> assign(:skip_plausible_tracking, true)`
			`\|> render("waiting_first_pageview.html", site: site)`
			`end`
			`end`
			`else`
			`render_error(conn, 404)`
			`end`
			`end`

Export main graph as csv (#24) * Export main graph as csv * Remove unused deps from mix-lock * Update bamboo dependency 2020-01-13 16:16:35 +03:00			`def csv_export(conn, %{"website" => website}) do`
			`site = Repo.get_by(Plausible.Site, domain: website)`

			`if site && current_user_can_access?(conn, site) do`
			`query = Stats.Query.from(site.timezone, conn.params)`
			`{plot, _, labels, _} = Stats.calculate_plot(site, query)`
			`csv_content = Enum.zip(labels, plot)`
			`\|> Enum.map(fn {k, v} -> [k, v] end)`
			`\|> (fn data -> [["Date", "Visitors"] \| data] end).()`
			`\|> CSV.encode`
			`\|> Enum.into([])`
			`\|> Enum.join()`

			`filename = "Visitors #{website} #{Timex.format!(query.date_range.first, "{ISOdate} ")} to #{Timex.format!(query.date_range.last, "{ISOdate} ")}.csv"`

			`conn`
			`\|> put_resp_content_type("text/csv")`
			`\|> put_resp_header("content-disposition", "attachment; filename=\"#{filename}\"")`
			`\|> send_resp(200, csv_content)`
			`else`
			`render_error(conn, 404)`
			`end`
			`end`

Shared links (#29) * Create shared links UI * Show shared links in a list on settings page * Show dropdown for each shared link * Show icon actions for shared links * Log user in when they click non-password-protected shared link * Actually authenticate using a password * Delete shared links 2020-01-29 12:29:11 +03:00			`def shared_link(conn, %{"slug" => slug}) do`
			`shared_link = Repo.get_by(Plausible.Site.SharedLink, slug: slug)`
			`\|> Repo.preload(:site)`

			`if shared_link do`
			`if shared_link.password_hash do`
			`render(conn, "shared_link_password.html", link: shared_link, layout: {PlausibleWeb.LayoutView, "focus.html"})`
			`else`
			`shared_link_auth_success(conn, shared_link)`
			`end`
			`else`
			`render_error(conn, 404)`
			`end`
			`end`

			`def authenticate_shared_link(conn, %{"slug" => slug, "password" => password}) do`
			`shared_link = Repo.get_by(Plausible.Site.SharedLink, slug: slug)`
			`\|> Repo.preload(:site)`

			`if shared_link do`
			`if Plausible.Auth.Password.match?(password, shared_link.password_hash) do`
			`shared_link_auth_success(conn, shared_link)`
			`else`
			`render(conn, "shared_link_password.html", link: shared_link, error: "Incorrect password. Please try again.", layout: {PlausibleWeb.LayoutView, "focus.html"})`
			`end`
			`else`
			`render_error(conn, 404)`
			`end`
			`end`

			`defp shared_link_auth_success(conn, shared_link) do`
			`site_session_key = "authorized_site__" <> shared_link.site.domain`

			`conn`
			`\|> put_session(site_session_key, %{`
			`id: shared_link.site.id,`
			`domain: shared_link.site.domain,`
			`timezone: shared_link.site.timezone,`
			`valid_until: Timex.now() \|> Timex.shift(minutes: 30) \|> DateTime.to_unix()`
			`})`
			`\|> redirect(to: "/#{shared_link.site.domain}")`
			`end`

Initial commit 2019-09-02 14:29:19 +03:00			`defp current_user_can_access?(_conn, %Plausible.Site{public: true}) do`
			`true`
			`end`

			`defp current_user_can_access?(conn, site) do`
Shared links (#29) * Create shared links UI * Show shared links in a list on settings page * Show dropdown for each shared link * Show icon actions for shared links * Log user in when they click non-password-protected shared link * Actually authenticate using a password * Delete shared links 2020-01-29 12:29:11 +03:00			`site_session_key = "authorized_site__" <> site.domain`
			`site_session = get_session(conn, site_session_key)`
			`valid_site_session = site_session && site_session[:valid_until] > DateTime.to_unix(Timex.now())`

			`valid_site_session \|\| current_user_is_owner?(conn, site)`
			`end`

			`defp current_user_is_owner?(conn, site) do`
Initial commit 2019-09-02 14:29:19 +03:00			`case conn.assigns[:current_user] do`
			`nil -> false`
			`user -> Plausible.Sites.is_owner?(user.id, site)`
			`end`
			`end`
Don't set session if user isn't logged in 2020-04-13 15:14:16 +03:00
			`defp remove_email_report_banner(conn, site) do`
			`if conn.assigns[:current_user] do`
			`put_session(conn, site.domain <> "_offer_email_report", nil)`
			`else`
			`conn`
			`end`
			`end`
Initial commit 2019-09-02 14:29:19 +03:00			`end`
React (#17) * Load dashboard with react * Rename stast2 to dashboard * Save timeframe on the frontend * Implement current visitors * Implement comparisons * React to route changes * Add modals * Show number of visitors on hover * Show 'Today' for today * Add 30 days * Show referrer drilldown * Arrow keys to go back and forward * Improve comparisons UI * Fix dropdown when clicking on it * Verify API access in a memoized fashion * Test API access * Test stats through controller * Move map formatting from stats controller to stats * Remove unused code * Remove dead code from query * Remove dead code from stats templates * Add stats view test back in * Render modal inside the modal component * Implement google search terms * Add explanation for screen sizes * Separate dashboard JS from the app js 2019-11-19 07:30:42 +03:00