def user_auth_edit(username): error = '' try: reload(sys) sys.setdefaultencoding('utf-8') username=username c, conn = connection() if request.method == "POST": permit = request.values.get("user_auth") #Be carefule!! Must use [] to quote username , otherwise it will #prompt a warning like: "not all arguments converted during string formatting" c.execute("update users set auth_type='%s' where username='******'" % (permit,username) ) conn.commit() c.close() conn.close() gc.collect() flash('user authorization updated successfully!') return redirect(url_for('users_list')) else: c, conn = connection() c.execute("select * from users where username = (%s)", [username]) auth_type_db = c.fetchone()[5] return render_template("user-auth-edit.html", title=u'用户权限', auth_type_db=auth_type_db,username=username, error=error) except Exception as e: return str(e)
def user_auth_edit(username): error = '' try: set_cn_encoding() username=username c, conn = connection() if request.method == "POST": permit = (request.values.get("user_auth")).encode('utf-8') #Be carefule!! Must use [] to quote username , otherwise it will #prompt a warning like: "not all arguments converted during string formatting" c.execute("update login_user set auth_type='%s' where username='******'" % (permit,username) ) conn.commit() c.close() conn.close() gc.collect() flash(u'用户权限更新成功!') return redirect(url_for('users_list')) else: c, conn = connection() c.execute("select * from login_user where username = (%s)", [username]) auth_type_db = c.fetchone()[5] #Get number of logs/login_user/docs and display them with "bootstrap badge" num_logs = (sysadm_badges_number())[0] num_users = (sysadm_badges_number())[1] num_docs = (sysadm_badges_number())[2] return render_template("user-auth-edit.html", title=u'修改权限', auth_type_db=auth_type_db,username=username, num_logs=num_logs, num_users=num_users, num_docs=num_docs, error=error) except Exception as e: return str(e)
def main(): form = RegistrationForm(request.form) try: c,conn = connection() error = None if request.method == 'POST': try: data = c.execute("SELECT * FROM users WHERE username = (%s)", thwart(request.form['username'])) data = c.fetchone()[2] if sha256_crypt.verify(request.form['password'], data): session['logged_in'] = True session['username'] = request.form['username'] flash('You are now logged in.') return redirect(url_for('dashboard')) except Exception, e: flash("What are you doing?") try: if request.method == 'POST' and form.validate(): username = form.username.data email = form.email.data password = sha256_crypt.encrypt((str(form.password.data))) c,conn = connection() x = c.execute("SELECT * FROM users WHERE username = (%s)", (thwart(username))) if int(x) > 0: flash("That username is already taken, please choose another") return render_template('register.html', form=form) else: c.execute("INSERT INTO users (username, password, email) VALUES (%s, %s, %s)", (thwart(username), thwart(password), thwart(email))) conn.commit() flash('Thanks for registering') c.close() conn.close() gc.collect() session['logged_in'] = True session['username'] = username return redirect(url_for('dashboard')) except Exception as e: return(str(e)) else: flash('Invalid credentials. Try again') gc.collect() return render_template("main.html", error=error, form=form, page_type = "main")
def register_page(): try: form = RegistrationForm(request.form) if request.method == "POST" and form.validate(): username = form.username.data email = form.email.data password = sha256_crypt.encrypt(str(form.password.data)) c, conn = connection() ret = c.execute("SELECT * FROM users WHERE username = ('{0}');".format(thwart(username))) if int(ret) > 0: return "Username taken" else: c.execute("INSERT INTO users (username, password, email) VALUES ('{0}', '{1}', '{2}')".format(thwart(username), thwart(password), thwart(email))) conn.commit() c.close() #Close db connection, saves ram conn.close() gc.collect() session["logged_in"] = True session["username"] = username return redirect(url_for("dashboard")) return render_template("register.html", form = form) except Exception as e: return str(e)
def login_page(): error = None try: #Already logged in if "logged_in" in session: return redirect(url_for("dashboard")) #Else, establish db connection c, conn = connection() if request.method == "POST": data = c.execute("SELECT * FROM users WHERE username = ('{0}');".format(thwart(request.form["username"]))) data = c.fetchone()[2] #password if sha256_crypt.verify(request.form["password"], data): session["logged_in"] = True session["username"] = request.form["username"] return redirect(url_for("dashboard")) else: error = "Invalid credentials, try again." c.close() #Close db connection, saves ram gc.collect() return render_template("login.html", error = error) except Exception as e: error = "Invalid credentials, try again. {0}".format(str(e)) return render_template("login.html", error = error)
def deltask(task_id): c,conn=connection() c.execute("DELETE FROM tb_tasks WHERE id=%d"%(task_id)) conn.commit() c.close() conn.close() return redirect(url_for('tasks'))
def rest_users(): try: response=[] data={} json_data="" c, conn = connection() c.execute("SELECT uid,username,name,surname,telephone,email,authority FROM tb_users ") rows = c.fetchall() for item in rows: data['ID']=item[0] data['name']=item[2] data['surname']=item[3] data['telephone']=item[4] data['email']=item[5] data['authority']=item[6] json_data=json_data + json.dumps(data) c.close() conn.close() return ('{"user":['+json_data+"]}") except Exception as e: return(str(e))
def activity(): error='' i=0 try: data={} values=[] ACTIVITY_LIST=[] c, conn = connection() c.execute("SELECT tb_users.username, tb_device.name, tb_activity.prevstatus, tb_activity.currentstatus,tb_activity.IP,tb_activity.DATE,tb_activity.error,tb_activity.report FROM tb_users, tb_activity, tb_device WHERE tb_users.uid=tb_activity.user_id and tb_device.id=tb_activity.device_id ") rows = c.fetchall() for row in rows: data["Username"]=row[0] data["Device"]=row[1] data["Prevstatus"]=row[2] data["Currentstatus"]=row[3] data["IP"]=row[4] data["DATE-TIME"]=row[5] data["Error"]=row[6] data["Report"]=row[7] ACTIVITY_LIST.insert(i,data) data={} i=i+1 c.close() conn.close() return render_template("activity.html",ACTIVITY_LIST=ACTIVITY_LIST) except Exception as e: flash(e)
def news(): try: c, conn = connection() data1 = c.execute("SELECT username FROM photos") data1 = c.fetchall() data2 = c.execute("SELECT description FROM photos") data2 = c.fetchall() data3 = c.execute("SELECT link FROM photos") data3 = c.fetchall() users = [] descs = [] links = [] for i in data1: users.append(str(i).strip("(),'")) for i in data2: descs.append(str(i).strip("(),'")) for i in data3: links.append(str(i).strip("(),'")) users.reverse() descs.reverse() links.reverse() print users print descs return render_template("news.html", usersdescslinks = zip(users,descs,links), username = session["username"], loggedIn = session["logged_in"]) except Exception as e: return str(e)
def userlist(): error='' i=0 try: data={} USER_LIST=[] c, conn = connection() c.execute("SELECT uid,username,name,surname,email,telephone,authority,active FROM tb_users ") rows = c.fetchall() for row in rows: data["ID"]=row[0] data["username"]=row[1] data["name"]=row[2] data["surname"]=row[3] data["email"]=row[4] data["telephone"]=row[5] data["authority"]=row[6] data["active"]=row[7] USER_LIST.insert(i,data) data={} i=i+1 c.close() conn.close() return render_template("list.html",USER_LIST=USER_LIST) except Exception as e: flash(e)
def devices(): try: i=0 data={} DEVICE_LIST=[] c, conn = connection() c.execute("SELECT * FROM tb_device ") rows = c.fetchall() for row in rows: data["ID"]=row[0] data["name"]=row[1] data["location"]=row[2] data["status"]=row[3] data["active"]=row[4] DEVICE_LIST.insert(i,data) data={} i=i+1 c.close() conn.close() return render_template("device.html",DEVICE_LIST=DEVICE_LIST) except Exception as e: return str(e)
def login_page(): error = '' try: c, conn = connection() if request.method == "POST": data = c.execute("select * from users where username = (%s)", [thwart(request.form['username'])]) #get the first record data = c.fetchone()[2] #check if password matches if sha256_crypt.verify(request.form['password'], data): session['logged_in'] = True session['username'] = request.form['username'] flash("You are now logged in!") return redirect(url_for('dashboard')) else: error = "Invalid credentials, try again!" gc.collect() return render_template("login.html", error=error) except Exception as e: error = "Invalid credentials, try again!" return render_template("login.html", error = error)
def sysadm_badges_number(): try: #Get number of logs and display it with "bootstrap badge" loglist = [] for logfile in os.listdir(LOGS_PATH): loglist.append(logfile) num_logs = len(loglist) #Get number of users and display it with "bootstrap badge" c, conn = connection() c.execute("SELECT * from login_user;") num_users = int(c.rowcount) #Get number of docs and display it with "bootstrap badge" num_docs = sum([len(files) for root,dirs,files in os.walk(DOCS_PATH)]) #Get number of weekly whiteboards and display it with "bootstrap badge" wblist = [] for weeklyfile in os.listdir(WEEKLY_PATH): wblist.append(weeklyfile) num_weeklys = len(wblist) return(num_logs, num_users, num_docs, num_weeklys) except Exception as e: return str(e)
def register_page(): try: form = RegistrationForm(request.form) if request.method == "POST" and form.validate(): username = form.username.data password = sha256_crypt.encrypt((str(form.password.data))) email = form.email.data c, conn = connection() x = c.execute("SELECT * FROM users WHERE username = %s", (username,)) if int(x) > 0: flash("That username is already taken, please choose another") return render_template('register.html', form=form) else: c.execute("INSERT INTO users (username, password, email) VALUES (%s, %s, %s)", (thwart(username), thwart(password), thwart(email))) conn.commit() flash("Thanks for registering!") c.close() conn.close() gc.collect() session['logged_in'] = True session['username'] = username return redirect(url_for('board')) return render_template("register.html", form=form) except Exception as e: return(str(e))
def get_user_id(username): """Convenience method to look up the id for a username.""" c,conn = connection() user_id = c.execute("SELECT uid FROM users WHERE username = %s", session['username']) user_id = c.fetchone()[0] return user_id
def login(): try: errorLog = '' errorReg = '' formLog = LoginForm(request.form) formReg = RegistrationForm(request.form) if request.method == "POST": #print "Hello" username = formLog.username.data password = formLog.password.data #print username, password c, conn = connection() data = c.execute("SELECT * FROM users WHERE username = (%s)",(thwart(username))) data = c.fetchone()[2] uid = c.execute("SELECT * FROM users WHERE username = (%s)",(thwart(username))) uid = c.fetchone()[0] #print "hello",data, uid #print "Hello" if sha256_crypt.verify(password, data): session['uid'] = uid session['logged_in'] = True session['username'] = username gc.collect() return redirect(url_for("news")) #return render_template("test.html", username = session["username"], loggedIn = session["logged_in"]) else: errorLog = "Invalid Credentials" return render_template('home.html', formLog = formLog, formReg = formReg, errorLog = errorLog, errorReg = errorReg) except Exception as e: errorLog = "Invalid credentials" return render_template ("home.html", formLog = formLog, formReg = formReg, errorLog = errorLog, errorReg = errorReg)
def register(): try: errorLog = '' errorReg = '' formReg = RegistrationForm(request.form) formLog = LoginForm(request.form) if request.method == "POST" and formReg.validate(): username = formReg.username.data email = formReg.email.data password = sha256_crypt.encrypt((str(formReg.password.data))) c, conn = connection() x = c.execute("SELECT * FROM users WHERE username = (%s)",(thwart(username))) if int(x) > 0: errorReg = "That username is taken." print("That username is already taken please choose another") return render_template("home.html", formReg = formReg, formLog = formLog, errorLog = errorLog, errorReg = errorReg) else: c.execute("INSERT INTO users (username, password, email) VALUES (%s, %s, %s)", (thwart(username),thwart(password),thwart(email))) uid = c.execute("SELECT uid FROM users WHERE username = (%s)",(thwart(username))) conn.commit() c.close() conn.close() gc.collect() session["uid"]=uid session["logged_in"] = True session["username"] = username return redirect(url_for("news")) except Exception as e: return str(e)
def login(): error = "" try: if request.method == 'POST': c, conn = connection() data = c.execute("SELECT * FROM data WHERE username = (%s)", thwart(str(request.form['username']))) data = c.fetchone()[3] if sha256_crypt.verify(str(request.form['password']), str(data)): session['logged_in'] = True session['username'] = request.form['username'] c.close() conn.close() gc.collect() flash('Logged in Successfully') return redirect(url_for('show_vault')) else: error = "Invalid Credentials" return render_template("login.html", error=error) return render_template("login.html", error=error) except Exception as e: error = "Invalid Credentials" #str(e) return render_template('login.html', error=error)
def enter_vault(): error = "" if 'logged_in' in session: form = vaultForm(request.form) if request.method == 'POST' and form.validate(): title = form.title.data username = form.username.data password = form.password.data c, conn = connection() c.execute("INSERT INTO "+ str(session['username']).lower() + " (title, username, password) VALUES (%s, %s, %s)", (thwart(title), thwart(username), thwart(password))) conn.commit() c.close() conn.close() gc.collect() flash("Data Entered Succesfully") #return redirect(url_for('index')) return redirect(url_for('show_vault')) else: error = "Fill out all details" return render_template('enter_vault.html', error=error, form=form) else: flash("You need to login first") return redirect(url_for('login'))
def login_page(): print "login page" error = '' try: c, conn = connection() if request.method == "POST": print "login POST" data = c.execute("SELECT * FROM users WHERE username = (%s)", [thwart(request.form['username'])] ) if not data: flash('username does not exist') data = c.fetchone()[2] print "data fetchone" if sha256_crypt.verify(request.form['password'], data): session['logged_in'] = True session['username'] = request.form['username'] flash('You are now logged in') return redirect(url_for("dashboard")) else: flash('incorrect password') e = "Invalid credentials, try again." gc.collect() return render_template("login.html", error=error) except Exception as e: print e error = "EXCEPTIONInvalid credentials, try again." return render_template("login.html", error = error)
def update_user_tracking(): try: completed = str(request.args['completed']) if completed in str(TOPIC_DICT.values()): client_name, settings, tracking, rank = userinformation() if tracking == None: tracking = completed else: if completed not in tracking: tracking = tracking+","+completed c,conn = connection() c.execute("UPDATE users SET tracking = %s WHERE username = %s", (thwart(tracking),thwart(client_name))) conn.commit() c.close() conn.close() client_name, settings, tracking, rank = userinformation() else: pass except Exception, e: pass
def login_page(): error = '' try: c, conn = connection() if request.method == "POST": data = c.execute("SELECT * FROM users WHERE username = (%s)", thwart(request.form['username'])) data = c.fetchone()[2] if sha256_crypt.verify(request.form['password'], data): session['logged_in'] = True session['username'] = request.form['username'] flash("You are now logged in") return redirect(url_for("dashboard")) else: error = "Invalid credentials, try again." gc.collect() return render_template("login.html", error=error) except Exception as e: error = flash(e) #error = "Invalid credentials, try again." return render_template("login.html", error = error)
def newPID(): try: form = NewPersonIDCard(request.form) if request.method == "POST": c,conn = connection() x = c.execute("INSERT INTO personalkort (fornavn, etternavn, telefon, firma, leder, type, serienr, legitimasjon, sykkelbod, arkiv, boder, tsst, opm) VALUES(%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s)", (thwart(request.form['fornavn']), thwart(request.form['etternavn']), thwart(request.form['telefonnummer']), thwart(request.form['firma']), thwart(request.form['leder']), thwart(request.form['korttype']), thwart(request.form['serienummer']), thwart(request.form['kode']), thwart(request.form['sykkelbod']), thwart(request.form['arkiv']), thwart(request.form['boder']), thwart(request.form['tsst']), thwart(request.form['opm']))) conn.commit() conn.close() if x == 1: flash("Brukeren er registrert") else: flash("Error") except Exception as e: return (str(e)) return render_template('newpersonid.html', form=form)
def mealplan(): c, conn = connection() c.execute("INSERT INTO mealplan (countMeal) VALUES (35)") a = str(c.lastrowid) c.execute("SELECT meal_id FROM meal WHERE type = 'B' ORDER BY RAND() LIMIT 7 ") breakfasts = c.fetchall() c.execute("SELECT meal_id FROM meal WHERE type = 'L' ORDER BY RAND() LIMIT 7 ") lunch = c.fetchall() c.execute("SELECT meal_id FROM meal WHERE type = 'D' ORDER BY RAND() LIMIT 7 ") dinner = c.fetchall() c.execute("SELECT meal_id FROM meal WHERE type = 'S' ORDER BY RAND() LIMIT 14 ") snacks = c.fetchall() i = 0 u= 0 y=0 t=0 while i <= (len(snacks))-1: snack = str(snacks[i][0]) #c.execute("INSERT INTO generates(mealplan_id,meal_id) VALUES (%d,%s)", 1,snacks[i][0]) c.execute("INSERT INTO generates (meal_id,mealplan_id) VALUES (%s, %s)",(int(snack),a)) i += 1 while u <= (len(dinner))-1: dinner = str(dinner[u][0]) c.execute("INSERT INTO generates (meal_id,mealplan_id) VALUES (%s, %s)",(int(dinner),a)) u+=1 while y <= (len(lunch))-1: lunch = str(lunch[y][0]) c.execute("INSERT INTO generates (meal_id,mealplan_id) VALUES (%s, %s)",(int(lunch),a)) y+=1 while t <= (len(breakfasts))-1: breakfast = str(breakfasts[t][0]) c.execute("INSERT INTO generates (meal_id,mealplan_id) VALUES (%s, %s)",(int(breakfast),a)) t+=1 return "str(breakfast[t][0])"
def doc_network_dashboard(): c, conn = connection() #Be carefule!! Must use [] to quote session['username'] , otherwise it will #prompt a warning like: "not all arguments converted during string formatting" c.execute("select * from login_user where username = (%s)", [session['username']]) #get the auth_type of first record auth_type_db = c.fetchone()[5] #check if auth_type matches if 'net' == auth_type_db or 'adm' == auth_type_db or 'superadm' == auth_type_db: set_cn_encoding() write_log_info('network') doclist = [] for docfile in os.listdir(NETWORK_DOCS_PATH): doclist.append(docfile) #Get number of docs of network num_network = (docs_badges_number())[1] return render_template("doc-network-dashboard.html", title=u'网络岗文档库', num_network=num_network,doclist = doclist) else: write_log_info('networkDenied') return redirect(url_for('role_error_page'))
def doc_server_dashboard(): c, conn = connection() #Be carefule!! Must use [] to quote session['username'] , otherwise it will #prompt a warning like: "not all arguments converted during string formatting" c.execute("select * from login_user where username = (%s)", [session['username']]) #get the auth_type of first record auth_type_db = c.fetchone()[5] #check auth_type of the logged in user, if not matches, redirect to role_error_page if 'ser' == auth_type_db or 'adm' == auth_type_db or 'superadm' == auth_type_db: set_cn_encoding() write_log_info('server') doclist = [] for docfile in os.listdir(SERVER_DOCS_PATH): doclist.append(docfile) #Get number of docs of server num_server = (docs_badges_number())[0] return render_template("doc-server-dashboard.html", title=u'服务器岗文档库', num_server=num_server,doclist = doclist) else: write_log_info('serverDenied') return redirect(url_for('role_error_page'))
def create_excel(self): c, conn = connection() c.execute("INSERT INTO invoice_detail (invoice_number, part_number, purchase_order_number, shelf_location, status, claimed) VALUES ( '%s', '%s', '%s', '', '%s', '%s' )" % ( thwart(self.invoice_number), thwart(self.part_number), thwart(self.purchase_order_number), thwart(self.status), thwart(self.claimed) ) ) conn.commit() c.close() conn.close() gc.collect() return True
def get_shelves(): c, conn = connection() c.execute("SELECT DISTINCT shelf_location FROM invoice_detail") all_shelves = c.fetchall() c.close() conn.close() gc.collect() return all_shelves
def create(self): c, conn = connection() c.execute("INSERT INTO invoice (invoice_number, date_received) VALUES ( '%s', '%s' )" % (thwart(self.invoice_number), thwart(self.date_received) ) ) conn.commit() c.close() conn.close() gc.collect() return True
def get_by_part_number(part_number): c, conn = connection() c.execute("SELECT * FROM part_detail WHERE part_number = '%s'" % (thwart(part_number) )) part_detail = c.fetchone() c.close() conn.close() gc.collect() return part_detail
def signup(): try: form = RegistrationForm(request.form) if request.method == "POST": username = request.form['username'] first_name = request.form['firstname'] last_name = request.form['lastname'] email = request.form['email'] pass1 = request.form['password'] pass2 = request.form['password2'] password = sha256_crypt.encrypt((str(pass1))) c, conn = connection() x = c.execute("SELECT * FROM users2 WHERE username = (%s)", [ thwart(username), ]) if int(x) > 0: flash("That username is already taken, please choose another") return render_template('html/signup.html') else: c.execute( "INSERT INTO users2 (username, password, first_name, last_name, email) VALUES (%s, %s, %s, %s, %s)", [ thwart(username), thwart(password), thwart(first_name), thwart(last_name), thwart(email), ]) conn.commit() flash("Thanks for registering!") c.close() conn.close() gc.collect() session['logged_in'] = True session['username'] = username return redirect(url_for('home')) return render_template("html/signup.html") except Exception as e: return (str(e))
def load_user(id): c,conn = connection() data = c.execute("SELECT * FROM users WHERE uid = (%s)", [thwart(id)]) if int(data) == 0: return None row = c.fetchone() data = row[2] username = row[1] uid = row[0] c.close() conn.close() gc.collect() return User(username,uid)
def open_times_to_db(toilet_id, open_times_dict): c, conn = connection() for open_times in open_times_dict: days_dict = get_days_dict(open_times["days"]) nonstop = is_nonstop(open_times) hours = get_hours(open_times) sql = "INSERT INTO `open_times` (`toilet_id`, `start_time`, `close_time`, `mon`, `tue`, `wed`, `thu`, `fri`, `sat`, `sun`, `nonstop`) VALUES ((SELECT `toilet_id` FROM `toilets` WHERE `toilet_id` = %s LIMIT 1), %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)" c.execute( sql, (toilet_id, hours[0], hours[1], days_dict["mon"], days_dict["tue"], days_dict["wed"], days_dict["thu"], days_dict["fri"], days_dict["sat"], days_dict["sun"], nonstop)) conn.commit() conn.close()
def users_list(): try: c, conn = connection() #get all users c.execute( "select `username`, `auth_type`, `email`, `regdate` from users") users_db = c.fetchall() return render_template("users-list.html", title=u'用户列表', users_db=users_db) except Exception as e: return str(e)
def host_list(): try: c, conn = connection() c.execute("SELECT last_check, endpoint_status, endpoint_name FROM netpop.endpoints;") results = c.fetchall() c.close() conn.close() except Exception: results = 'e' return results
def user_load(user_id): try: con, conn = connection() con.execute("SELECT * FROM user WHERE id_user = (%s)", escape_string(str(user_id))) user_dict = con.fetchone() user = User() user.update(user_dict) con.close() conn.close() gc.collect() return user except: return None
def edit_endpoint(): try: c, conn = connection() c.execute("SELECT endpoint_name, endpoint_status FROM netpop.endpoints;") results = c.fetchall() c.close() conn.close() return render_template("edit_endpoint.html", ehost_l=results) except Exception as e: return render_template("error.html", error=e)
def endpoint(endpoint_name): try: c, conn = connection() c.execute("SELECT * FROM netpop.endpoints WHERE endpoint_name LIKE %s", endpoint_name) results = c.fetchone() c.close() conn.close() return render_template("endpoint.html", endpoint_info=results) except Exception as e: return render_template("error.html", error=e)
def threads(): c, conn = connection() c.execute("SELECT * FROM posts ORDER BY post_posted DESC LIMIT 5") posts = c.fetchall() ids = [post[0] for post in posts] users = [post[1] for post in posts] bodies = [post[2] for post in posts] data = zip(ids, users, bodies) return render_template('threads.html', ids=ids, users=users, bodies=bodies, data=data)
def login(): c, conn = connection() c.execute("SELECT * FROM admin") data = c.fetchall() if request.method == 'POST': session.pop('admin', None) for i in data: if i[0] == request.form['email'] and i[1] == request.form[ 'password']: session['admin'] = request.form['email'] return redirect(url_for('dashboard_admin')) flash(f'Wrong Email or Password!', 'danger') return redirect(url_for('login')) return render_template("login.html")
def ipLink(): form = ipLinkForm(request.form) try: if request.method == 'POST' and form.validate(): ipLink = form.ipLink.data mycursor, mydb = connection() mycursor.execute("INSERT INTO linksespecificos(ALVO) VALUES ('" + str(ipLink) + "')") mydb.commit() flash("LINK/IP inserido com sucesso") mycursor.close() mydb.close() return redirect(url_for("getIpLink")) else: mycursor2, mydb2 = connection() mycursor2.execute('SELECT ALVO FROM linksespecificos') data = mycursor2.fetchall() mycursor2.close() mydb2.close() return render_template("getIpLink.html", listaIpLinks=data) except Exception as e: return (str(e))
def dashboard(): recent = {} mrecent = [] precent = [] c, conn = connection() rece = c.execute( "select distinct(mname),plot from movies order by STR_TO_DATE(r_date,'%e %b %Y') desc LIMIT 10" ) for i in range(0, int(rece)): x = c.fetchone() recent[x[0]] = x[1] #mrecent=x[0] #precent=x[1] return render_template("dashboard.html", recent=recent)
def get_player_id_by_name(player_name): c, conn = db.connection() cmd_get_id_by_name = "SELECT PlayerID" \ " FROM Players " \ "WHERE PlayerName = '{:s}'"\ .format(player_name) c.execute(cmd_get_id_by_name) player_id = c.fetchone() player_id = player_id[0] return player_id
def host_list(): try: c, conn = connection() c.execute("SELECT ip FROM netpop.endpoints WHERE enabled = 1;") results = [item[0] for item in c.fetchall()] c.close() conn.close() except Exception: results = 'e' return results
def edit_item(user_id, item_id): conn, cursor = connection(app) try: cursor.execute('SELECT * FROM Cart WHERE user_id="{}"'.format(user_id)) data = cursor.fetchall() if data: elements = [] for i in range(1, 8): element = { "title": str(i), "url": "{}/update_item/{}/{}/{}".format(link, user_id, item_id, i), "type": "json_plugin_url" } elements.append(element) send = { "messages": [ { "text": "How many would you like to add?", "quick_replies": elements } ] } return jsonify(send) else: send = { "messages": [ { "text": "There is nothing in your cart", "quick_replies": [ { "title": "Main menu", "block_names": ["menu"] }] } ] } return jsonify(send) except Exception as e: print(e) cursor.close() conn.close() send = { "messages": [ { "text": "Some Error Occured." } ] } return jsonify(send)
def newadmin(): data = request.get_json() username = data['username'] name = data['name'] password = data['password'] try: cursor, conn = connection() sql = "insert into admins values(%s , %s , %s)" cursor.execute(sql, (username, name, password)) conn.commit() conn.close() return jsonify({"status": 'admin added'}) except: return jsonify({"status": 'Already exists'})
def showAll(): if 'user' in session: currentUser = session['user'] c, conn = connection() c.execute( "select a.name,description,color from userApp as u inner join application as a on u.name=a.name and id=%s", [currentUser]) data = c.fetchall() l = [] for x in data: l.append(x) return render_template('showApp.html', apps=l) else: return render_template('showApp.html', warn='Please Log In')
def fetchstudents(COLUMN_NAME): cursor, conn = connection() sql = "select a.usn , b.name , a.{0} from studentsdata a , credentials b where a.{0} <> 'no' and a.usn = b.userid".format( COLUMN_NAME) cursor.execute(sql) rows = [x for x in cursor] cols = [x[0] for x in cursor.description] ds = [] for row in rows: d = {} for prop, val in zip(cols, row): d[prop] = val ds.append(d) return jsonify(ds)
def activate_brands(): try: c, conn = connection() idstring = request.form["beer_ids"] idarray = idstring.split(",") for element in idarray: beer_count = c.execute( "UPDATE beer_brands SET active=1 WHERE id=" + element) conn.commit() return jsonify({"epc": idarray}) except Exception as e: return jsonify({"error": e})
def login_page(): error = '' try: c, conn = connection() if request.method == "POST": data = c.execute( "SELECT * FROM users WHERE username = '******'".format( thwart(request.form['username']))) data = c.fetchone()[2] kd = pd.read_csv("/var/www/FlaskApp/data.csv") subjects = kd["subject"].unique() subject = subjects[2] vector = kd.loc[kd.subject == subject, "H.period":"H.Return"].iloc[34].values pv = prepare_data(kd, subject) d = model(pv[0], pv[2], pv[1], pv[3], num_iterations=4000, learning_rate=0.05, print_cost=False) arr = np.array([vector, vector]) lr_res = predict(d['w'], d['b'], arr.transpose()) sc = StatisticClassifier(kd, 0.95) sc_res = sc.singleClassification(kd, vector) if (sha256_crypt.verify(request.form['password'], data)) and ( (lr_res[0, 0] + sc_res) / 2 > 0.5): session['logged_in'] = True session['username'] = request.form['username'] flash("You are now logged in") return redirect(url_for("reg")) else: error = "Invalid credentials, try again." gc.collect() return render_template("login.html", error=error) except Exception as e: flash(e) error = "Invalid credentials, try again." return render_template("login.html", error=error)
def insert_usuario(): try: if request.method == "POST": c, conn = connection() nome = request.form['nome'] email = request.form['email'] password = sha256_crypt.encrypt((str(request.form['password']))) print(nome) print(email) print(password) #print(confirme_password) x = c.execute(""" SELECT * FROM usuarios WHERE email=%s""", [email]) if int(x) > 0: flash("E-mail já está cadastrado. Verifique se está correto o email.") return render_template('register.html') if int(x) == 0: if sha256_crypt.verify(request.form['confirme_password'],password): pontos = 0 c.execute(""" INSERT INTO portifolio.usuarios (nome,email,password,pontos) VALUES (%s,%s,%s,%s)""", [nome, email, password, pontos]) flash("Obrigado por Registrar") session['logged_in'] = True session['username'] = nome session['email'] = email session['notificacoes'] = 0 session['pontos'] = 0 conn.commit() c.close() conn.close() gc.collect() flash("Cliente Cadastrado com Sucesso") return render_template('teste.html') else: flash("Passwords diferentes, insira novamente") return render_template('register.html') return render_template('register.html') except Exception as e: return (str(e))
def register(): next_url = request.args.get('next') if not current_user.is_authenticated: try: if request.method == "POST": con, conn = connection() form = request.form email = form['email'] password = sha256_crypt.encrypt((str(form['password']))) used_username = con.execute( "SELECT * FROM user WHERE login = (%s)", escape_string(request.form['login'])) if "@" not in email: wrong_email = True else: wrong_email = False if used_username or wrong_email: return render_template('register.html', form=form, used_username=used_username, wrong_email=wrong_email) con.execute( "INSERT INTO scout (first_name, last_name) VALUES (%s, %s)", (escape_string( form['first-name']), escape_string(form['last-name']))) conn.commit() scout_id = con.lastrowid sql = "INSERT INTO user (login, password, email, scout_id) VALUES (%s, %s, %s, " + str( scout_id) + ")" con.execute( sql, (escape_string(form['login']), escape_string(password), escape_string(form['email']))) conn.commit() flash("Zarejestrowano pomyślnie!", 'success') send_confirmation_email(form['email']) con.close() conn.close() gc.collect() return redirect(url_for('login', next=next_url, username=email)) else: return render_template('register.html') except Exception as error: flash('Błąd: ' + str(error), 'danger') return redirect('/') else: flash("Jesteś już zalogowany!", 'warning') return redirect(next_url)
def leaderboard2(): # quizname = ['Doraemon', 'Shinchan', 'Chhota Bheem', 'Ninja Hattori' ] c, conn = connection() # m = {} c.execute( "select username, sum(score),sum(timing) from scoreboard group by username order by sum(score) desc, sum(timing) asc" ) # quiz = c.execute("SELECT * from scoreboard where quizname = \'%s\' ORDER BY score DESC, timing ASC" %thwart(name)) data = c.fetchall() # m[name]=data c.close() conn.close() if 'user' in session: return render_template('leaderboard2.html', data=data, len=len(data)) return "YOU MUST LOGIN!"
def download_file(): c, conn = connection() c.execute("SELECT * FROM tbl_profiles") Details = [ dict(id=row[0], name=row[1], id_number=row[2], phone_number=row[3], debt_amount=row[4]) for row in c.fetchall() ] c.close() return excel.make_response_from_array([[1, 2], [3, 4]], "csv", file_name="export_data")
def leaderboard2(): c, conn = connection() c.execute( "select username, sum(score),sum(timing) from scoreboard group by username order by sum(score) desc, sum(timing) asc" ) data = c.fetchall() c.close() conn.close() if 'user' in session: return render_template( 'leaderboard2.html', data=data, len=len(data), column=['Rank', 'Username', 'Total Score', 'Total Time']) return "YOU MUST LOGIN!"
def getLinks(): c, conn = connection() html_file = open('bbc_rssfeed.html', 'w+') c.execute('SELECT link FROM rss_links') rows = c.fetchall() loopCount = 0 rowCount = c.rowcount for row in rows: link_tag = '<a href="' + row[0] + '">' + row[0][26:] + '</a>' html_file.append(link_tag) loopCount = loopCount + 1 conn.close() if loopCount == rowCount: return 1 return 0
def scouting_troop_create(name, scout_team_id, notify=True): con, conn = connection() sql = "INSERT INTO scouting_troop (name, scout_team_id) VALUES (%s, %s)" con.execute("SELECT name FROM scout_team WHERE id_scout_team = %s", escape_string(str(scout_team_id))) scout_team = con.fetchone() con.execute(sql, (escape_string(name), escape_string(str(scout_team_id)))) conn.commit() if notify: flash("Stworzono \"{}\" w {}".format(name, scout_team['name']), 'success') scouting_troop_id = con.lastrowid con.close() conn.close() return scouting_troop_id
def user_auth_edit(username): error = '' try: username = username c, conn = connection() if request.method == "POST": permit = (request.values.get("user_auth")).encode('utf-8') #Be carefule!! Must use [] to quote username , otherwise it will #prompt a warning like: "not all arguments converted during string formatting" c.execute( "update login_user set auth_type='%s' where username='******'" % (permit, username)) conn.commit() c.close() conn.close() gc.collect() flash(u'用户权限更新成功!') return redirect(url_for('user_list')) else: c, conn = connection() c.execute("select * from login_user where username = (%s)", [username]) auth_type_db = c.fetchone()[5] #Get number of logs/login_user/docs and display them with "bootstrap badge" num_logs = (sysadm_badges_number())[0] num_users = (sysadm_badges_number())[1] num_docs = (sysadm_badges_number())[2] return render_template("user-auth-edit.html", title=u'修改权限', auth_type_db=auth_type_db, \ username=username, num_logs=num_logs, num_users=num_users, num_docs=num_docs, error=error) except Exception as e: return str(e)
def fetchcourses(): cursor, conn = connection() sql = "SELECT COLUMN_NAME FROM INFORMATION_SCHEMA.COLUMNS WHERE TABLE_SCHEMA = 'moodle' AND TABLE_NAME = 'studentsdata'" cursor.execute(sql) conn.close() rows = [x for x in cursor] cols = [x[0] for x in cursor.description] ds = [] for row in rows: d = {} for prop, val in zip(cols, row): if not val == "usn": d[prop] = val ds.append(d) return jsonify(ds)
def delete_kegs(): try: c, conn = connection() #keg_type = request.form["epc"] data = request.form["keg_ids"] idarray = data.split(',') for element in idarray: c.execute("DELETE FROM inventory WHERE keg_id=" + element) conn.commit() return jsonify({"epc": idarray}) except Exception as e: return jsonify({"error": e})