def index_temp():
if request.method == "GET":
session.clear()
return render_template("temp/index.html")
if request.method == "POST":
name = request.form['name']
email = request.form['email']
university = request.form['university']
cursor.execute("SELECT file FROM users_temp WHERE email='%s'" %
(email))
data = cursor.fetchall()
if (cursor.rowcount > 0):
session['user_file'] = data[0][0]
session['logged'] = True
return jsonify({"status": "User already exists!"})
session['user_file'] = name.lower().replace(" ", "") + email.replace(
".", "") + ".txt"
cursor.execute(
"INSERT INTO users_temp(name, email, university, file) VALUES('%s', '%s', '%s', '%s')"
% (name, email, university, name.lower().replace(" ", "") +
email.replace(".", "") + ".txt"))
db.commit()
return jsonify({"status": "User added put into db!"})
def reset_pass():
if request.method == "GET":
return render_template("reset-pass.html",
navbar=Markup(NAVBAR),
footer=Markup(FOOTER))
if request.method == "POST":
email = request.form['email']
password = request.form['password']
hash = hashlib.sha512(password.encode())
cursor.execute(
"UPDATE users SET password='******' WHERE SHA2(email, 512)='%s'" %
(hash.hexdigest(), email))
db.commit()
return jsonify({
"status": "success",
"title": "Success!",
"message": "Password reset successfully!",
"href": core_str + "/login"
})
def updated_category():
id_dm = request.args.get("id_dm", type=int)
ten_dm = request.form.get("ten_dm")
sql = f"update db_danhmuc set ten_dm = N'{ten_dm}'where id_dm = {id_dm}"
cursor.execute(sql)
connection.commit()
return redirect("/admin/category")
def set_delete(self,id,name):
if c==1:
id = raw_input('ID:')
cursor.execute('DELETE FROM little WHERE id = %s',id)
if c==2:
name = raw_input('NAME:')
cursor.execute('DELETE FROM little WHERE name = %s',name)
def detail():
id = int(request.args.get('id'))
cursor.execute("SELECT title, description FROM learnt WHERE id=%d" % id)
data = cursor.fetchone()
return render_template("detail.html", title=data[0], desc=Markup(data[1]))
def category():
if "username" in session:
id_dm = request.args.get("id_dm", type=int)
sql = "select * from products_categories_admin"
cursor.execute(sql)
record = cursor.fetchall()
return render_template("admin_category.html", ds=record, id_dm=id_dm)
else:
return redirect("/login")
def add_model():
if request.method == "GET":
return render_template("add-model.html",
logout=Markup(NAVLOGREG),
navbar=Markup(NAVBARLOGGED),
footer=Markup(FOOTER))
if request.method == "POST":
model_name = request.form['model_name']
model_desc = request.form['model_desc']
dataset = request.form['dataset']
code = request.files['code']
model = request.files['model']
code_filename = secure_filename(code.filename)
model_filename = secure_filename(model.filename)
hash_id = hashlib.sha512(str(session['user_id']).encode())
if code_filename.split(".")[-1] != "zip" or model_filename.split(
".")[-1] != "zip":
return jsonify({
"status": "error",
"title": "Error!",
"message": "Only zip files accepted!",
"href": core_str + "/add-model"
})
code_filename_hashed = ''.join(
code_filename.split(".")
[0:-1]) + hash_id.hexdigest() + "." + code_filename.split(".")[-1]
model_filename_hashed = ''.join(
model_filename.split(".")
[0:-1]) + hash_id.hexdigest() + "." + model_filename.split(".")[-1]
code.save("code/" + code_filename_hashed)
model.save("model/" + model_filename_hashed)
cursor.execute("SELECT name FROM users WHERE id=%d" %
(session['user_id']))
data = cursor.fetchall()
cursor.execute(
"INSERT INTO model(uid, uname, name, des, dataset, code, model, approved) VALUES('%d', '%s', '%s', '%s', '%s', '%s', '%s', '%d')"
% (session['user_id'], data[0][0], model_name, model_desc, dataset,
code_filename_hashed, model_filename_hashed, 0))
db.commit()
return jsonify({
"status": "success",
"title": "Success!",
"message": "Model added successfully!",
"href": core_str + "/profile"
})
def about_us():
if request.method == "GET":
cursor.execute("SELECT * FROM team ORDER BY priority")
data = cursor.fetchall()
return render_template("about-us.html",
navbar=Markup(NAVBAR),
footer=Markup(FOOTER),
team=data)
def verify():
if request.method == "GET":
email = request.args.get('q')
cursor.execute("UPDATE users SET status=1 WHERE email='%s'" % (email))
db.commit()
return render_template("login.html", verified="1")
def insert_product():
sql = "select * from products_author_admin"
cursor.execute(sql)
record = cursor.fetchall()
print(record)
sql1 = "select * from products_categories_admin"
cursor.execute(sql1)
record1 = cursor.fetchall()
print(record1)
return render_template("insert_product.html", ds=record, ds1=record1)
def product():
id_sach = request.args.get("id_sach", type=int)
sql = f"SELECT * from search_categories where id_sach = {id_sach};"
cursor.execute(sql)
rs = cursor.fetchall()
sql_lq = f"select * from search_minmax_tacgia WHERE id_dm IN (SELECT id_dm FROM db_sach WHERE id_sach = {id_sach}) or id_tacgia IN (SELECT id_tacgia FROM db_sach WHERE id_sach = {id_sach}) limit 4;"
cursor.execute(sql_lq)
lq = cursor.fetchall()
connection.commit()
return render_template("product.html", rs=rs, lq=lq)
def index():
try:
cursor.execute(
"SELECT id, title FROM learnt WHERE DATE(timestamp) = CURDATE()")
except:
reconnect()
data = cursor.fetchall()
return render_template("index.html", data=data)
def put():
question = request.form['question'].replace("'", r"\'")
type = request.form['type']
ask_friend = int(request.form['ask_friend'])
cursor.execute(
"INSERT INTO questions(question, type, ask_friend) VALUES('%s', '%s', '%d')"
% (question, type, ask_friend))
db.commit()
return jsonify({"status": "Question successfully put into db!"})
def quiz():
if request.method == "GET":
cursor.execute("SELECT * FROM questions")
data = cursor.fetchall()
data_dict = {}
lines = []
print(data)
if session.get('logged') == True:
file = open("files/" + session.get('user_file'), "r")
doc = file.read()
file.close()
lines = doc.split("\n")
for d in data:
if d[2] in data_dict.keys():
data_dict[d[2]].append(d[1])
else:
data_dict[d[2]] = [d[1]]
data_dict_1 = {}
for i in range(len(lines) - 1):
data_dict_1[lines[i].split("--")[0]] = lines[i].split("--")[1]
print(data_dict_1)
return render_template("temp/quiz.html",
data_dict=data_dict,
data_dict_1=data_dict_1)
if request.method == "POST":
answers = request.form.getlist('answers[]')
count = 0
with open("files/" + session.get('user_file'), "w") as file:
for answer in answers:
file.write(answer + "\n")
if (int(answer.split("--")[1]) != 0):
count += 1
if count == 109:
return jsonify({"status": "Complete"})
return jsonify({"status": "Success", "count": str(count)})
def inserted_img():
img = ""
id_sach = request.form.get("id_sach")
for uploaded_file in request.files.getlist("link_img"):
if uploaded_file.filename != "":
img = uploaded_file.filename
print(uploaded_file.filename)
uploaded_file.save(
os.path.join("static/imgs", uploaded_file.filename))
sql = f"insert into img_sach(link_img, id_sach) values('../static/imgs/{img}', '{id_sach}')"
cursor.execute(sql)
connection.commit()
return redirect("/admin/img")
def contribution():
if request.method == "GET":
cursor.execute("SELECT id, name, approved FROM model WHERE uid=%d" %
(session['user_id']))
data = cursor.fetchall()
return render_template("contribution.html",
data=data,
logout=Markup(NAVLOGREG),
navbar=Markup(NAVBARLOGGED),
footer=Markup(FOOTER))
def login_dn():
us = request.form.get("user_name")
pa = request.form.get("pass_word")
sql = "select * from db_user where us = '" + us + "' and pa='" + pa + "'"
cursor.execute(sql)
record = cursor.fetchall()
if (len(record) == 1):
session["username"] = us
return redirect("/admin")
else:
err = 'Mật khẩu hoặc tài khoản không đúng'
return render_template("login.html", err=err)
def inserted_product():
ten_sach = request.form.get("ten_sach")
id_tacgia = request.form.get("id_tacgia")
gia_sach = request.form.get("gia_sach")
soluong = request.form.get("soluong")
so_sao = request.form.get("so_sao")
mota = request.form.get("mota")
trang_thai = request.form.get("trang_thai")
id_dm = request.form.get("id_dm")
sql = f"insert into db_sach(ten_sach,id_tacgia,gia_sach,soluong,so_sao,mota,trang_thai,id_dm) values(N'{ten_sach}', {id_tacgia}, {gia_sach},{soluong},{so_sao},'{mota}',{trang_thai},{id_dm})"
cursor.execute(sql)
connection.commit()
return redirect("/admin/product")
def requests():
if request.method == "GET":
cursor.execute(
"SELECT id, uid, uname, name FROM model WHERE approved=0 ORDER BY puttime"
)
data = cursor.fetchall()
return render_template("requests.html",
data=data,
logout=Markup(NAVLOGREG),
navbar=Markup(NAVBARADMIN),
footer=Markup(FOOTER))
def updated_product():
id_sach = request.args.get("id_sach", type=int)
ten_sach = request.form.get("ten_sach")
id_tacgia = request.form.get("id_tacgia")
gia_sach = request.form.get("gia_sach")
soluong = request.form.get("soluong")
so_sao = request.form.get("so_sao")
mota = request.form.get("mota")
trang_thai = request.form.get("trang_thai")
id_dm = request.form.get("id_dm")
sql = f"update db_sach set ten_sach = N'{ten_sach}',id_tacgia={id_tacgia}, gia_sach={gia_sach}, soluong={soluong}, so_sao={so_sao}, mota=N'{mota}', trang_thai={trang_thai},id_dm={id_dm} where id_sach = {id_sach}"
cursor.execute(sql)
connection.commit()
return redirect("/admin/product")
def updated_img():
id_img = request.args.get("id_img", type=int)
id_sach = request.form.get("id_sach")
img = ""
for uploaded_file in request.files.getlist("link_img"):
if uploaded_file.filename != "":
img = uploaded_file.filename
print(uploaded_file.filename)
uploaded_file.save(
os.path.join("static/imgs", uploaded_file.filename))
sql = f"update img_sach set link_img = '../static/imgs/{img}', id_sach = '{id_sach}' where id_img = {id_img}"
cursor.execute(sql)
connection.commit()
return redirect("/admin/img")
def maps():
cursor.execute("select title, address, time, img, long, lat from db_maps")
version = cursor.fetchall()
geo_json = []
for row in version:
geo_json.append({
"loc": [row[5], row[4]],
"title": row[0],
"address": row[1],
"time": row[2],
"img": row[3]
})
# cursor.close()
return render_template("maps.html", data=json.dumps(geo_json))
def updated():
id_tacgia = request.args.get("id_tacgia", type=int)
ten_tacgia = request.form.get("ten_tacgia")
gioithieu = request.form.get("gioithieu")
avt_tacgia = ""
for uploaded_file in request.files.getlist("avt_tacgia"):
if uploaded_file.filename != "":
avt_tacgia = uploaded_file.filename
print(uploaded_file.filename)
uploaded_file.save(
os.path.join("static/imgs", uploaded_file.filename))
sql = f"update db_tacgia set ten_tacgia = N'{ten_tacgia}', avt_tacgia = '../static/imgs/{avt_tacgia}', gioi_thieu = N'{gioithieu}' where id_tacgia = {id_tacgia}"
cursor.execute(sql)
connection.commit()
return redirect("/admin/author")
def inserted_actor():
avt = ""
for uploaded_file in request.files.getlist("avt_tacgia"):
if uploaded_file.filename != "":
avt = uploaded_file.filename
print(uploaded_file.filename)
uploaded_file.save(
os.path.join("static/imgs", uploaded_file.filename))
ten_tacgia = request.form.get("ten_tacgia")
gioi_thieu = request.form.get("gioithieu")
sql = f"insert into db_tacgia(ten_tacgia, avt_tacgia, gioi_thieu) values(N'{ten_tacgia}', '../static/imgs/{avt}', N'{gioi_thieu}')"
cursor.execute(sql)
connection.commit()
return redirect("/admin/author")
def add():
if request.method == "GET":
return render_template("add.html")
elif request.method == "POST":
title = request.form['title']
desc = request.form['desc']
cursor.execute(
"INSERT INTO learnt(title, description) VALUES('%s', '%s')" %
(title, desc))
db.commit()
return jsonify({"ret": "success"})
def reset():
if request.method == "GET":
return render_template("reset.html",
navbar=Markup(NAVBAR),
footer=Markup(FOOTER))
if request.method == "POST":
email = request.form['email']
hash = hashlib.sha512(email.encode())
cursor.execute("SELECT id FROM users WHERE email='%s'" % (email))
cursor.fetchone()
print(cursor.rowcount)
if (cursor.rowcount == -1):
return jsonify({
"status": "error",
"title": "Error!",
"message": "No account found connected to this email!",
"href": core_str + "/login"
})
msg = Message("Reset password",
sender="*****@*****.**",
recipients=[email])
msg.body = """
Hey there,
Click on the following link to reset your password:-
http://care.srmist.edu.in/srmbrain/reset-pass?q=%s
Thanks
Team SRM Brain
""" % (hash.hexdigest())
mail.send(msg)
return jsonify({
"status": "success",
"title": "Success!",
"message": "Reset mail sent successfully!",
"href": core_str + "/login"
})
def signup():
if request.method == "GET":
return render_template("signup.html")
elif request.method == "POST":
name = request.form['name']
email = request.form['email']
phone = request.form['phone']
password = request.form['password']
errorString = ""
errors = 0
if (not check_email(email)):
errors += 1
errorString += "Invalid email address!\n"
if (len(phone) != 10):
errors += 1
errorString += "Invlaid phone number\n"
if (not errors):
cursor.execute(
"SELECT id FROM user WHERE email='%s' OR phone='%s'" %
(email, phone))
cursor.fetchone()
if (cursor.rowcount >= 1):
return jsonify({
"status": "Account with this email or phone exists!",
"code": -1
})
cursor.execute(
"INSERT INTO user(name, email, phone, password) VALUES('%s', '%s', '%s', '%s')"
% (name, email, phone, password))
db.commit()
return jsonify({"status": "Signed up successfully!", "code": 1})
return jsonify({"status": errorString, "code": -1})
def add_univ():
if request.method == "GET":
return render_template("add-details.html",
logout=Markup(NAVLOGREG),
navbar=Markup(NAVBARADMIN),
footer=Markup(FOOTER))
if request.method == "POST":
if "university" in request.form:
university = request.form['university']
cursor.execute("INSERT INTO university(univ) VALUES('%s')" %
(university))
db.commit()
return jsonify({
"status": "success",
"title": "Success!",
"message": "University added successfully!",
"href": core_str + "/add-details"
})
else:
dept_abbr = request.form['dept_abbr']
dept = request.form['dept']
cursor.execute(
"INSERT INTO department(dept, full_dept) VALUES('%s', '%s')" %
(dept_abbr, dept))
db.commit()
return jsonify({
"status": "success",
"title": "Success!",
"message": "Department added successfully!",
"href": core_str + "/add-details"
})
def android_admin():
if request.method == "GET":
cursor.execute("SELECT id FROM users WHERE account_type='u'")
cursor.fetchall()
user_count = cursor.rowcount
cursor.execute("SELECT id FROM model")
cursor.fetchall()
total_count = cursor.rowcount
cursor.execute("SELECT id FROM model WHERE approved=1")
cursor.fetchall()
approved_count = cursor.rowcount
not_approved_count = total_count - approved_count
return jsonify({
"user_count": user_count,
"total_count": total_count,
"approved_count": approved_count,
"not_approved_count": not_approved_count
})
def check():
if request.method == "GET":
return render_template("check.html")
elif request.method == "POST":
date = request.form['date']
title = request.form['title']
if date == "-1":
cursor.execute("SELECT id, title FROM learnt WHERE title='%s'" %
title)
elif title == "-1":
cursor.execute(
"SELECT id, title FROM learnt WHERE DATE(timestamp)='%s'" %
date)
else:
cursor.execute(
"SELECT id, title FROM learnt WHERE DATE(timestamp)='%s' AND title='%s'"
% (date, title))
data = cursor.fetchall()
return jsonify({"data": data})
def admin():
if request.method == "GET":
cursor.execute("SELECT id FROM users WHERE account_type='u'")
cursor.fetchall()
user_count = cursor.rowcount
cursor.execute("SELECT id FROM model")
cursor.fetchall()
total_count = cursor.rowcount
cursor.execute("SELECT id FROM model WHERE approved=1")
cursor.fetchall()
approved_count = cursor.rowcount
not_approved_count = total_count - approved_count
return render_template("admin.html",
user_count=user_count,
total_count=total_count,
approved_count=approved_count,
not_approved_count=not_approved_count,
logout=Markup(NAVLOGREG),
navbar=Markup(NAVBARADMIN),
footer=Markup(FOOTER))
#!/usr/bin/env python
# coding=utf-8
from connect import cursor
print "请选择查询的方式"
print "1-按ID查询"
print "2-按姓名查询"
print "3-按年龄查询"
print "4-按班级查询"
b = input( "请输入你的选择:")
if b==1:
id = raw_input('请输入你要查询的ID:')
cursor.execute('select * from little where id = %s',id)
values = cursor.fetchone()
print values[0],values[1],values[2],values[3]
if b==2:
name = raw_input('请输入你要查询的姓名:')
cursor.execute('select * from little where name = %s',name)
values = cursor.fetchall()
for i in range(cursor.rowcount):
print values[i-1][0],values[i-1][1],values[i-1][2],values[i-1][3]
if b==3:
age = raw_input('请输入你要查询的年龄:')
cursor.execute('select * from little where age = %s',age)
values = cursor.fetchall()
for i in range(cursor.rowcount):
print values[i-1][0],values[i-1][1],values[i-1][2],values[i-1][3]
if b==4:
classes = raw_input('请输入你要查询的班级:')
cursor.execute('select * from little where class = %s',classes)
values = cursor.fetchall()
for i in range(cursor.rowcount):
