def do_something(self):
try:
flag = self.check_request_type('post')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
CKEditorFuncNum = self.get_argument("CKEditorFuncNum", '')
num = 0
for upfile in self.request.files:
num += 1
filedict = self.request.files[upfile][0]
sourcefilename = filedict.get('filename')
suffix = sourcefilename.split(".")[-1]
filename = time.strftime("%Y%m%d%H%M%S_") + str(num) + "." + suffix
if not os.path.exists(ImageDataPath):
os.mkdir(ImageDataPath)
savefilename = os.path.join(ImageDataPath,filename)
with open(savefilename,'wb') as fp:
fp.write(filedict['body'])
returnurl = "/ImagePath/%s"%(filename)
returnstr = '''<script type='text/javascript'>window.parent.CKEDITOR.tools.callFunction(%s, '%s','Upload Sucress');</script>'''%(CKEditorFuncNum,returnurl)
self.write(returnstr)
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
urls = self.get_url_parts()
#print urls
groupcode, pagenum = self.get_url_values(urls)
if not groupcode.isdigit():
groupcode = None
page = int(pagenum)
'''获取笔记组信息'''
group_infos = MysqlHandler.select_group_info(is_admin)
skip = ShowBlogNum * (page - 1)
'''`CategoryCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views`'''
'''获取笔记索引列表信息'''
blogs_info = MysqlHandler.select_blogs_info(
groupcode, skip, is_admin)
blogs_index = self.get_blog_index(blogs_info)
allnum = MysqlHandler.get_group_num(groupcode)
pagenum = int(math.ceil(float(allnum) / ShowBlogNum))
self.render('index.html',
GroupInfos=group_infos,
BlogIndexs=blogs_index,
IsAdmin=is_admin,
AllPageNum=pagenum,
NowPage=page,
GroupCode=groupcode)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
urls = self.get_url_parts()
BlogId = self.get_url_values(urls)
info = MysqlHandler.select_blog_info(BlogId, is_admin)
group_infos = MysqlHandler.select_group_info(is_admin)
GroupCode = info[0]
Subject = info[1]
FileName = info[2]
datetime = info[3]
Privacy = info[5]
if Privacy == 0:
Privacy = False
PostUrl = '/uploadblog?blogId=%s&filename=%s' % (BlogId, FileName)
Content = self.get_file_content(FileName)
self.render('createBlog.html',
datetime=datetime,
Check=GroupCode,
Privacy=Privacy,
Subject=Subject,
Content=Content,
PostUrl=PostUrl,
GroupInfos=group_infos,
IsAdmin=is_admin)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
Message = MysqlHandler.get_about()
self.render('about.html',Message = Message,IsAdmin = is_admin)
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
filename = self.request.uri.split('/')[-1]
filename = os.path.join(ImageDataPath,filename)
with open(filename,'rb') as fp:
Content = fp.read()
self.set_header("Content-type", self.guess_type(filename))
self.write(Content)
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
GroupInfos = MysqlHandler.select_group_info(is_admin)
Message = MysqlHandler.get_about()
self.render('setting.html',GroupInfos = GroupInfos,AboutInfo = Message,IsAdmin = is_admin)
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
groupname = self.get_argument('groupname')
MysqlHandler.add_group(groupname)
self.redirect('/setting')
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
groupid = self.get_argument('groupid')
MysqlHandler.delete_group(groupid)
self.write('true')
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('post')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
content = self.get_argument('message')
MysqlHandler.upload_about(content)
self.redirect('/setting')
except:
get_err_msg()
self.render('error.html',message = 'Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
if not self.check_admin():
raise Exception('No permission error')
self.clear_cookie("username")
self.redirect('/')
#self.render("login.html",username = '', password = "",message = u"",IsAdmin = False)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
self.render('login.html',
username="",
password="",
message="",
IsAdmin=is_admin)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def initMysql(self):
try:
self.MySQLAccess = MySQLAccess(self.host, self.user, self.password,
self.dbname)
except:
err_msg = get_err_msg()
root.error(err_msg)
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
urls = self.get_url_parts()
BlogId = self.get_url_values(urls)
MysqlHandler.del_blog(BlogId)
self.redirect('/')
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def select_blogs_info(self, GroupCode=None, Skip=0, IsAdmin=False):
'''
@summary: 查询日志列表
'''
data_list = []
try:
Skip = MySQLdb.escape_string(str(Skip))
if GroupCode:
GroupCode = MySQLdb.escape_string(str(GroupCode))
if IsAdmin:
sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData`
WHERE GroupCode = %s AND IsDelete = 0 ORDER BY `AddTime` ASC LIMIT %s,20;''' % (
GroupCode, Skip)
else:
sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData`
WHERE GroupCode = %s AND IsDelete = 0 AND Privacy = 0 ORDER BY `AddTime` ASC LIMIT %s,20;''' % (
GroupCode, Skip)
else:
if IsAdmin:
sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData`
WHERE IsDelete = 0 ORDER BY `AddTime` DESC LIMIT %s,20;''' % (
Skip)
else:
sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData`
WHERE IsDelete = 0 AND Privacy = 0 ORDER BY `AddTime` DESC LIMIT %s,20;''' % (
Skip)
data = self.MySQLAccess.select(sql)
for d in data:
ret_data = (d[1], d[2], d[3], d[4], d[5])
data_list.append(copy.deepcopy(ret_data))
except:
err_msg = get_err_msg()
root.error(err_msg)
return data_list
def del_blog(self, BlogId):
BlogId = MySQLdb.escape_string(BlogId)
sql = '''UPDATE BlogData SET IsDelete = 1 WHERE Id = %s''' % BlogId
try:
self.MySQLAccess.execute(sql)
except:
err_msg = get_err_msg()
root.error(err_msg)
def upload_about(self, Content):
Content = MySQLdb.escape_string(Content)
sql = '''UPDATE About SET Content = '%s' WHERE Id = 1;''' % Content
try:
self.MySQLAccess.execute(sql)
except:
err_msg = get_err_msg()
root.error(err_msg)
def get_about(self):
message = None
sql = '''SELECT Content FROM About WHERE Id = 1;'''
try:
data = self.MySQLAccess.select(sql)
message = data[0][0]
except:
err_msg = get_err_msg()
root.error(err_msg)
return message
def change_group(self, GroupId, NewGroupName):
GroupId = MySQLdb.escape_string(GroupId)
NewGroupName = MySQLdb.escape_string(NewGroupName)
sql = '''UPDATE GroupInfo SET GroupName = '%s' WHERE GroupCode = %s;''' % (
NewGroupName, GroupId)
try:
self.MySQLAccess.execute(sql)
except:
err_msg = get_err_msg()
root.error(err_msg)
def delete_group(self, GroupId):
GroupId = MySQLdb.escape_string(GroupId)
sql1 = '''UPDATE GroupInfo SET IsDelete = 1 WHERE GroupCode = %s;''' % GroupId
sql2 = '''UPDATE BlogData SET IsDelete = 1 WHERE GroupCode = %s;''' % GroupId
try:
self.MySQLAccess.execute(sql1)
self.MySQLAccess.execute(sql2)
except:
err_msg = get_err_msg()
root.error(err_msg)
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
urls = self.get_url_parts()
blogId = self.get_url_values(urls)
info = MysqlHandler.select_blog_info(blogId, is_admin)
if info:
GroupCode = info[0]
Subject = info[1]
FileName = info[2]
datetime = info[3]
Views = info[4]
Privacy = info[5]
else:
self.redirect('/')
return
group_infos = MysqlHandler.select_group_info(is_admin)
lastpagenum, lasttitle = MysqlHandler.get_last_next_blog_info(
blogId, GroupCode, IsLast=True)
nextpagenum, nexttitle = MysqlHandler.get_last_next_blog_info(
blogId, GroupCode, IsLast=False)
blogdata = self.get_file_content(FileName)
blogInfo = [Subject, datetime, blogdata, Views]
self.render('blog.html',
BlogInfo=blogInfo,
GroupInfos=group_infos,
BlogId=blogId,
IsAdmin=is_admin,
lastpagenum=lastpagenum,
lasttitle=lasttitle,
nextpagenum=nextpagenum,
nexttitle=nexttitle,
Privacy=Privacy)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('post')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
username = self.get_current_user()
groupcode = self.get_argument('category')
subject = self.get_argument('subject')
message = self.get_argument('message')
privacy = self.get_argument('privacy')
FileName = self.save_file(message)
Addtime = time.strftime("%Y-%m-%d %H:%M:%S")
MysqlHandler.insertdata(subject, username, Addtime, FileName,
groupcode, privacy)
self.redirect('/')
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def add_group(self, GroupName):
GroupName = MySQLdb.escape_string(GroupName)
sql1 = '''SELECT MAX(Id) FROM GroupInfo WHERE Id < 100;'''
try:
data = self.MySQLAccess.select(sql1)
maxId = data[0][0] + 1
sql2 = '''INSERT INTO GroupInfo (GroupName,GroupCode) VALUES ('%s',%s);''' % (
GroupName, str(maxId))
print sql2
self.MySQLAccess.execute(sql2)
except:
err_msg = get_err_msg()
root.error(err_msg)
def do_something(self):
try:
flag = self.check_request_type('post')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
blogId = self.get_argument('blogId')
filename = self.get_argument('filename')
groupcode = self.get_argument('category')
subject = self.get_argument('subject')
message = self.get_argument('message')
privacy = self.get_argument('privacy')
self.save_file(message, filename)
UpdateTime = time.strftime("%Y-%m-%d %H:%M:%S")
MysqlHandler.updatablog(subject, UpdateTime, groupcode, blogId,
privacy)
self.redirect('/')
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def do_something(self):
try:
flag = self.check_request_type('get')
if not flag:
raise Exception('Request type error')
is_admin = self.check_admin()
if not is_admin:
raise Exception('No permission error')
group_infos = MysqlHandler.select_group_info(is_admin)
datetime = time.strftime("%Y-%m-%d %H:%M:%S")
self.render('createBlog.html',
datetime=datetime,
Check='0',
Privacy=0,
Subject='',
Content='',
PostUrl='/saveblog',
GroupInfos=group_infos,
IsAdmin=is_admin)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def init_sql(self):
tryMax = 100
num = 0
while num < tryMax:
num += 1
try:
self.conn = MySQLdb.connect(host=self.host,
user=self.user,
passwd=self.pwd,
db=self.db,
charset=self.charset)
break
except:
errmsg = get_err_msg()
log.root.debug(errmsg)
def select_group_info(self, is_admin=False):
'''
@summary: 查询所有博客的名称,编码,条目
'''
datatuple = ()
try:
if is_admin:
sql = '''SELECT `GroupName`,`GroupCode`,`Count` FROM `GroupInfo` WHERE IsDelete = 0;'''
else:
sql = '''SELECT `GroupName`,`GroupCode`,`Count` FROM `GroupInfo` WHERE Privacy = 0 AND IsDelete = 0;'''
datatuple = self.MySQLAccess.select(sql)
except:
err_msg = get_err_msg()
root.error(err_msg)
return datatuple
def do_something(self):
try:
flag = self.check_request_type('post')
if not flag:
raise Exception('Request type error')
username = self.get_argument('username')
username = username.strip()
password = self.get_argument('password')
password = password.strip()
flag = MysqlHandler.checkuser(username, password)
if flag:
self.set_secure_cookie("username",
self.get_argument("username"))
self.redirect('/')
else:
self.render("login.html",
username=username,
password="",
message=u"用户名或密码错误",
IsAdmin=False)
except:
get_err_msg()
self.render('error.html',
message='Something wrong with the server.')
def updatablog(self, Subject, UpdateTime, GroupCode, blogId, Privacy):
'''
@summary: 更新博客信息
'''
try:
Subject = MySQLdb.escape_string(Subject)
UpdateTime = MySQLdb.escape_string(UpdateTime)
GroupCode = MySQLdb.escape_string(GroupCode)
blogId = MySQLdb.escape_string(blogId)
sql = '''UPDATE BlogData SET Subject = '%s',ChangeTime = '%s',GroupCode = %s,Privacy = %s where Id = %s; ''' % (
Subject, UpdateTime, GroupCode, Privacy, blogId)
self.MySQLAccess.execute(sql)
except:
err_msg = get_err_msg()
root.error(err_msg)
def get_group_num(self, GroupCode=None):
'''
@summary: 获取该类别博客数目
'''
Count = 0
try:
if not GroupCode:
sql = '''SELECT COUNT(*) FROM `BlogData` WHERE IsDelete = 0;'''
else:
GroupCode = MySQLdb.escape_string(str(GroupCode))
sql = '''SELECT COUNT(*) FROM `BlogData` WHERE GroupCode = %s AND IsDelete = 0;''' % GroupCode
data = self.MySQLAccess.select(sql)
Count = data[0][0]
except:
err_msg = get_err_msg()
root.error(err_msg)
return Count
def checkuser(self, UserName, PassWord):
'''
@summary: 和数据库中的用户信息进行匹配
'''
try:
UserName = MySQLdb.escape_string(UserName)
PassWord = MySQLdb.escape_string(PassWord)
sql = '''SELECT `UserName`,`PassWord` FROM UserInfo WHERE `UserName` = '%s' AND `PassWord` = '%s' ''' % (
UserName, PassWord)
data = self.MySQLAccess.select(sql)
if data and UserName == data[0][0] and PassWord == data[0][1]:
return True
else:
return False
except:
err_msg = get_err_msg()
root.error(err_msg)
return False
