def do_something(self): try: flag = self.check_request_type('post') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') CKEditorFuncNum = self.get_argument("CKEditorFuncNum", '') num = 0 for upfile in self.request.files: num += 1 filedict = self.request.files[upfile][0] sourcefilename = filedict.get('filename') suffix = sourcefilename.split(".")[-1] filename = time.strftime("%Y%m%d%H%M%S_") + str(num) + "." + suffix if not os.path.exists(ImageDataPath): os.mkdir(ImageDataPath) savefilename = os.path.join(ImageDataPath,filename) with open(savefilename,'wb') as fp: fp.write(filedict['body']) returnurl = "/ImagePath/%s"%(filename) returnstr = '''<script type='text/javascript'>window.parent.CKEDITOR.tools.callFunction(%s, '%s','Upload Sucress');</script>'''%(CKEditorFuncNum,returnurl) self.write(returnstr) except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() urls = self.get_url_parts() #print urls groupcode, pagenum = self.get_url_values(urls) if not groupcode.isdigit(): groupcode = None page = int(pagenum) '''获取笔记组信息''' group_infos = MysqlHandler.select_group_info(is_admin) skip = ShowBlogNum * (page - 1) '''`CategoryCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views`''' '''获取笔记索引列表信息''' blogs_info = MysqlHandler.select_blogs_info( groupcode, skip, is_admin) blogs_index = self.get_blog_index(blogs_info) allnum = MysqlHandler.get_group_num(groupcode) pagenum = int(math.ceil(float(allnum) / ShowBlogNum)) self.render('index.html', GroupInfos=group_infos, BlogIndexs=blogs_index, IsAdmin=is_admin, AllPageNum=pagenum, NowPage=page, GroupCode=groupcode) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') urls = self.get_url_parts() BlogId = self.get_url_values(urls) info = MysqlHandler.select_blog_info(BlogId, is_admin) group_infos = MysqlHandler.select_group_info(is_admin) GroupCode = info[0] Subject = info[1] FileName = info[2] datetime = info[3] Privacy = info[5] if Privacy == 0: Privacy = False PostUrl = '/uploadblog?blogId=%s&filename=%s' % (BlogId, FileName) Content = self.get_file_content(FileName) self.render('createBlog.html', datetime=datetime, Check=GroupCode, Privacy=Privacy, Subject=Subject, Content=Content, PostUrl=PostUrl, GroupInfos=group_infos, IsAdmin=is_admin) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() Message = MysqlHandler.get_about() self.render('about.html',Message = Message,IsAdmin = is_admin) except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: filename = self.request.uri.split('/')[-1] filename = os.path.join(ImageDataPath,filename) with open(filename,'rb') as fp: Content = fp.read() self.set_header("Content-type", self.guess_type(filename)) self.write(Content) except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') GroupInfos = MysqlHandler.select_group_info(is_admin) Message = MysqlHandler.get_about() self.render('setting.html',GroupInfos = GroupInfos,AboutInfo = Message,IsAdmin = is_admin) except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') groupname = self.get_argument('groupname') MysqlHandler.add_group(groupname) self.redirect('/setting') except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') groupid = self.get_argument('groupid') MysqlHandler.delete_group(groupid) self.write('true') except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('post') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') content = self.get_argument('message') MysqlHandler.upload_about(content) self.redirect('/setting') except: get_err_msg() self.render('error.html',message = 'Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') if not self.check_admin(): raise Exception('No permission error') self.clear_cookie("username") self.redirect('/') #self.render("login.html",username = '', password = "",message = u"",IsAdmin = False) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() self.render('login.html', username="", password="", message="", IsAdmin=is_admin) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def initMysql(self): try: self.MySQLAccess = MySQLAccess(self.host, self.user, self.password, self.dbname) except: err_msg = get_err_msg() root.error(err_msg)
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') urls = self.get_url_parts() BlogId = self.get_url_values(urls) MysqlHandler.del_blog(BlogId) self.redirect('/') except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def select_blogs_info(self, GroupCode=None, Skip=0, IsAdmin=False): ''' @summary: 查询日志列表 ''' data_list = [] try: Skip = MySQLdb.escape_string(str(Skip)) if GroupCode: GroupCode = MySQLdb.escape_string(str(GroupCode)) if IsAdmin: sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData` WHERE GroupCode = %s AND IsDelete = 0 ORDER BY `AddTime` ASC LIMIT %s,20;''' % ( GroupCode, Skip) else: sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData` WHERE GroupCode = %s AND IsDelete = 0 AND Privacy = 0 ORDER BY `AddTime` ASC LIMIT %s,20;''' % ( GroupCode, Skip) else: if IsAdmin: sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData` WHERE IsDelete = 0 ORDER BY `AddTime` DESC LIMIT %s,20;''' % ( Skip) else: sql = '''SELECT `GroupCode`,`Subject`,`FileName`,`AddTime`,`Id`,`Views` FROM `BlogData` WHERE IsDelete = 0 AND Privacy = 0 ORDER BY `AddTime` DESC LIMIT %s,20;''' % ( Skip) data = self.MySQLAccess.select(sql) for d in data: ret_data = (d[1], d[2], d[3], d[4], d[5]) data_list.append(copy.deepcopy(ret_data)) except: err_msg = get_err_msg() root.error(err_msg) return data_list
def del_blog(self, BlogId): BlogId = MySQLdb.escape_string(BlogId) sql = '''UPDATE BlogData SET IsDelete = 1 WHERE Id = %s''' % BlogId try: self.MySQLAccess.execute(sql) except: err_msg = get_err_msg() root.error(err_msg)
def upload_about(self, Content): Content = MySQLdb.escape_string(Content) sql = '''UPDATE About SET Content = '%s' WHERE Id = 1;''' % Content try: self.MySQLAccess.execute(sql) except: err_msg = get_err_msg() root.error(err_msg)
def get_about(self): message = None sql = '''SELECT Content FROM About WHERE Id = 1;''' try: data = self.MySQLAccess.select(sql) message = data[0][0] except: err_msg = get_err_msg() root.error(err_msg) return message
def change_group(self, GroupId, NewGroupName): GroupId = MySQLdb.escape_string(GroupId) NewGroupName = MySQLdb.escape_string(NewGroupName) sql = '''UPDATE GroupInfo SET GroupName = '%s' WHERE GroupCode = %s;''' % ( NewGroupName, GroupId) try: self.MySQLAccess.execute(sql) except: err_msg = get_err_msg() root.error(err_msg)
def delete_group(self, GroupId): GroupId = MySQLdb.escape_string(GroupId) sql1 = '''UPDATE GroupInfo SET IsDelete = 1 WHERE GroupCode = %s;''' % GroupId sql2 = '''UPDATE BlogData SET IsDelete = 1 WHERE GroupCode = %s;''' % GroupId try: self.MySQLAccess.execute(sql1) self.MySQLAccess.execute(sql2) except: err_msg = get_err_msg() root.error(err_msg)
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() urls = self.get_url_parts() blogId = self.get_url_values(urls) info = MysqlHandler.select_blog_info(blogId, is_admin) if info: GroupCode = info[0] Subject = info[1] FileName = info[2] datetime = info[3] Views = info[4] Privacy = info[5] else: self.redirect('/') return group_infos = MysqlHandler.select_group_info(is_admin) lastpagenum, lasttitle = MysqlHandler.get_last_next_blog_info( blogId, GroupCode, IsLast=True) nextpagenum, nexttitle = MysqlHandler.get_last_next_blog_info( blogId, GroupCode, IsLast=False) blogdata = self.get_file_content(FileName) blogInfo = [Subject, datetime, blogdata, Views] self.render('blog.html', BlogInfo=blogInfo, GroupInfos=group_infos, BlogId=blogId, IsAdmin=is_admin, lastpagenum=lastpagenum, lasttitle=lasttitle, nextpagenum=nextpagenum, nexttitle=nexttitle, Privacy=Privacy) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('post') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') username = self.get_current_user() groupcode = self.get_argument('category') subject = self.get_argument('subject') message = self.get_argument('message') privacy = self.get_argument('privacy') FileName = self.save_file(message) Addtime = time.strftime("%Y-%m-%d %H:%M:%S") MysqlHandler.insertdata(subject, username, Addtime, FileName, groupcode, privacy) self.redirect('/') except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def add_group(self, GroupName): GroupName = MySQLdb.escape_string(GroupName) sql1 = '''SELECT MAX(Id) FROM GroupInfo WHERE Id < 100;''' try: data = self.MySQLAccess.select(sql1) maxId = data[0][0] + 1 sql2 = '''INSERT INTO GroupInfo (GroupName,GroupCode) VALUES ('%s',%s);''' % ( GroupName, str(maxId)) print sql2 self.MySQLAccess.execute(sql2) except: err_msg = get_err_msg() root.error(err_msg)
def do_something(self): try: flag = self.check_request_type('post') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') blogId = self.get_argument('blogId') filename = self.get_argument('filename') groupcode = self.get_argument('category') subject = self.get_argument('subject') message = self.get_argument('message') privacy = self.get_argument('privacy') self.save_file(message, filename) UpdateTime = time.strftime("%Y-%m-%d %H:%M:%S") MysqlHandler.updatablog(subject, UpdateTime, groupcode, blogId, privacy) self.redirect('/') except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def do_something(self): try: flag = self.check_request_type('get') if not flag: raise Exception('Request type error') is_admin = self.check_admin() if not is_admin: raise Exception('No permission error') group_infos = MysqlHandler.select_group_info(is_admin) datetime = time.strftime("%Y-%m-%d %H:%M:%S") self.render('createBlog.html', datetime=datetime, Check='0', Privacy=0, Subject='', Content='', PostUrl='/saveblog', GroupInfos=group_infos, IsAdmin=is_admin) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def init_sql(self): tryMax = 100 num = 0 while num < tryMax: num += 1 try: self.conn = MySQLdb.connect(host=self.host, user=self.user, passwd=self.pwd, db=self.db, charset=self.charset) break except: errmsg = get_err_msg() log.root.debug(errmsg)
def select_group_info(self, is_admin=False): ''' @summary: 查询所有博客的名称,编码,条目 ''' datatuple = () try: if is_admin: sql = '''SELECT `GroupName`,`GroupCode`,`Count` FROM `GroupInfo` WHERE IsDelete = 0;''' else: sql = '''SELECT `GroupName`,`GroupCode`,`Count` FROM `GroupInfo` WHERE Privacy = 0 AND IsDelete = 0;''' datatuple = self.MySQLAccess.select(sql) except: err_msg = get_err_msg() root.error(err_msg) return datatuple
def do_something(self): try: flag = self.check_request_type('post') if not flag: raise Exception('Request type error') username = self.get_argument('username') username = username.strip() password = self.get_argument('password') password = password.strip() flag = MysqlHandler.checkuser(username, password) if flag: self.set_secure_cookie("username", self.get_argument("username")) self.redirect('/') else: self.render("login.html", username=username, password="", message=u"用户名或密码错误", IsAdmin=False) except: get_err_msg() self.render('error.html', message='Something wrong with the server.')
def updatablog(self, Subject, UpdateTime, GroupCode, blogId, Privacy): ''' @summary: 更新博客信息 ''' try: Subject = MySQLdb.escape_string(Subject) UpdateTime = MySQLdb.escape_string(UpdateTime) GroupCode = MySQLdb.escape_string(GroupCode) blogId = MySQLdb.escape_string(blogId) sql = '''UPDATE BlogData SET Subject = '%s',ChangeTime = '%s',GroupCode = %s,Privacy = %s where Id = %s; ''' % ( Subject, UpdateTime, GroupCode, Privacy, blogId) self.MySQLAccess.execute(sql) except: err_msg = get_err_msg() root.error(err_msg)
def get_group_num(self, GroupCode=None): ''' @summary: 获取该类别博客数目 ''' Count = 0 try: if not GroupCode: sql = '''SELECT COUNT(*) FROM `BlogData` WHERE IsDelete = 0;''' else: GroupCode = MySQLdb.escape_string(str(GroupCode)) sql = '''SELECT COUNT(*) FROM `BlogData` WHERE GroupCode = %s AND IsDelete = 0;''' % GroupCode data = self.MySQLAccess.select(sql) Count = data[0][0] except: err_msg = get_err_msg() root.error(err_msg) return Count
def checkuser(self, UserName, PassWord): ''' @summary: 和数据库中的用户信息进行匹配 ''' try: UserName = MySQLdb.escape_string(UserName) PassWord = MySQLdb.escape_string(PassWord) sql = '''SELECT `UserName`,`PassWord` FROM UserInfo WHERE `UserName` = '%s' AND `PassWord` = '%s' ''' % ( UserName, PassWord) data = self.MySQLAccess.select(sql) if data and UserName == data[0][0] and PassWord == data[0][1]: return True else: return False except: err_msg = get_err_msg() root.error(err_msg) return False