def add_user():
if request.method == "GET":
return render_template("adduser.html")
if request.method == "POST":
data = dict((k,v[0]) for k,v in dict(request.form).items())
print data
print checkuser({"name":data["name"]},"name")
if data["name"] in checkuser({"name":data["name"]},"name"):
errmsg = "username is exist"
return json.dumps({"tag":1,"msg":errmsg})
adduser(data)
return json.dumps({"tag":0})
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == 'POST':
login_info = dict((k, v[0]) for k, v in dict(request.form).items())
login_info['password'] = hashlib.md5(login_info['password'] +
salt).hexdigest()
name = login_info["name"]
userlists = getone(name)
print userlists
if not login_info.get("name", None) or not login_info.get(
"password", None):
errmsg = "username and password can not be empty"
return json.dumps({'code': '1', 'errmsg': errmsg})
#把数据库中所有的name拿出来存为一个list
if login_info["name"] not in [
n.values()[0] for n in get_userlist(["name"])
]:
namelist = [n.values()[0] for n in get_userlist(["name"])]
print namelist
print login_info["name"]
errmsg = "username not exist"
return json.dumps({'code': '1', 'errmsg': errmsg})
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password is error"
return json.dumps({'code': '1', 'errmsg': errmsg})
if int(userlists['status']) == 1:
return json.dumps({'code': '1', 'errmsg': "账户被锁定"})
#判断session中的用户名与表单里面的用户名是否相同
session['name'] = login_info['name']
return json.dumps({'code': '0', 'result': "login sucess"})
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == 'POST':
login_info = dict((k, v[0]) for k, v in dict(request.form).items())
print login_info
if not login_info.get("name", None) or not login_info.get(
"password", None):
errmsg = "username and password can not be empty"
return render_template("login.html", result=errmsg)
#把数据库中所有的name拿出来存为一个list
if login_info["name"] not in [
n.values()[0] for n in get_userlist(["name"])
]:
namelist = [n.values()[0] for n in get_userlist(["name"])]
print namelist
print login_info["name"]
errmsg = "username not exist"
return render_template("login.html", result=errmsg)
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password is error"
return render_template("login.html", result=errmsg)
else:
#判断session中的用户名与表单里面的用户名是否相同
session['name'] = login_info['name']
return redirect("/userlist")
def new_user():
error = None
prevname = None
if request.method == 'POST':
checkstatus = db.checkuser(request.form['username'])
if checkstatus != True:
error = checkstatus
prevname = request.form['username']
else:
if len(request.form['password'])<6:
error = 'Password too short, must be 6 or more characters'
elif request.form['password'] == request.form['passwordconfirm']:
createstatus, usersec = db.createuser(request.form['username'], request.form['password'])
if createstatus == True:
if debug:
path = 'http://localhost:5000/qr/'
else:
path = 'http://ec2-54-242-83-73.compute-1.amazonaws.com/qr/'
imgpath = path + usersec + '.png'
return render_template('new_user_created.html', user=request.form['username'], secret=usersec, imgpath=imgpath)
else:
error = createstatus
prevname = request.form['username']
else:
error = 'Password missing or incorrect'
prevname = request.form['username']
return render_template('new_user.html', error=error, prevname=prevname)
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
login_info = dict((k, v[0]) for k, v in dict(request.form).items())
if not login_info["name"] or not login_info["password"]:
errmsg = "username or password or role not null"
data = json.dumps({"tag": 0, "msg": errmsg})
return data
if login_info["name"] not in [
n.values()[0] for n in userlist(["name"])
]:
errmsg = "user is not exist"
data = json.dumps({"tag": 0, "msg": errmsg})
return data
if login_info["password"] != checkuser({'name': login_info["name"]}):
errmsg = "password error"
data = json.dumps({"tag": 0, "msg": errmsg})
return data
else:
u_role = [
u['role'] for u in userlist(["name", "role"])
if u['name'] == login_info["name"]
][0]
session["username"] = login_info["name"]
session["role"] = u_role
data = json.dumps({"tag": 1})
return data
def login():
if request.method =="GET":
return render_template("login.html")
if request.method =='POST':
login_info = dict((k,v[0]) for k,v in dict(request.form).items())
print login_info
if not login_info.get("name",None) or not login_info.get("password",None):
errmsg = "username and password can not be empty"
# return render_template("login.html",result=errmsg)
return json.dumps({'code':'1','errmsg':errmsg})
#把数据库中所有的name拿出来存为一个list
if login_info["name"] not in [ n.values()[0] for n in get_userlist(["name"]) ]:
namelist=[ n.values()[0] for n in get_userlist(["name"]) ]
print namelist
print login_info["name"]
errmsg = "username not exist"
# return render_template("login.html",result=errmsg)
return json.dumps({'code':'1','errmsg':errmsg})
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password is error"
# return render_template("login.html",result=errmsg)
return json.dumps({'code':'1','errmsg':errmsg})
else:
#判断session中的用户名与表单里面的用户名是否相同
session['name']=login_info['name']
# return redirect("/userlist")
return json.dumps({'code':'0','result':"login sucess"})
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
login_info = dict((k,v[0]) for k,v in dict(request.form).items())
if not checkuser({"name":login_info["name"]},"name"):
errmsg = "user is not exist"
data = json.dumps({"tag":0,"msg":errmsg})
return data
if login_info["password"] != checkuser({'name':login_info["name"]})[0]:
errmsg = "password error"
data = json.dumps({"tag":0,"msg":errmsg})
return data
else:
u_role = checkuser({"name":login_info["name"]},"role")
session["username"] = login_info["name"]
session["role"] = u_role
data = json.dumps({"tag":1})
return data
def changepass():
if request.method == "GET":
return render_template("changepass.html")
if request.method == "POST":
passwd_info = dict((k, v[0]) for k, v in dict(request.form).items())
if not passwd_info.get("password", "None") or not passwd_info.get(
"oldpassword", "None"):
errmsg = "password can not be empty"
return render_template("changepass.html", result=errmsg)
if passwd_info["oldpassword"] != checkuser(session.get("name")):
oldpassword = checkuser(session.get("name"))
print oldpassword
errmsg = "your input oldpassword is error"
return render_template("changepass.html", result=errmsg)
else:
name = session.get("name")
password = passwd_info["password"]
print name
print password
modpasswd(password, name)
return redirect('/userlist')
def changepass():
if request.method == "GET":
username = session.get("name")
return render_template("changepass.html", username=username)
if request.method == "POST":
passwd_info = dict((k, v[0]) for k, v in dict(request.form).items())
if not passwd_info.get("password", "None") or not passwd_info.get(
"oldpassword", "None"):
errmsg = "password can not be empty"
return json.dumps({'code': '1', 'errmsg': errmsg})
if passwd_info["oldpassword"] != checkuser(session.get("name")):
oldpassword = checkuser(session.get("name"))
print oldpassword
errmsg = "your input oldpassword is error"
return json.dumps({'code': '1', 'errmsg': errmsg})
else:
name = session.get("name")
password = passwd_info["password"]
print name
print password
modpasswd(password, name)
return json.dumps({'code': '0', 'result': "change sucess"})
def changepass():
if request.method=="GET":
return render_template("changepass.html")
if request.method=="POST":
passwd_info=dict((k,v[0]) for k,v in dict(request.form).items())
if not passwd_info.get("password","None") or not passwd_info.get("oldpassword","None"):
errmsg = "password can not be empty"
# return render_template("changepass.html",result=errmsg)
return json.dumps({'code':'1','errmsg':errmsg})
if passwd_info["oldpassword"] != checkuser(session.get("name")):
oldpassword=checkuser(session.get("name"))
print oldpassword
errmsg= "your input oldpassword is error"
# return render_template("changepass.html",result=errmsg)
return json.dumps({'code':'1','errmsg':errmsg})
else:
name=session.get("name")
password=passwd_info["password"]
print name
print password
modpasswd(password,name)
# return redirect('/userlist')
return json.dumps({'code':'0','result':"change sucess"})
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
login_info = dict((k,v[0]) for k,v in dict(request.form).items())
if not login_info["name"] or not login_info["password"]:
errmsg = "username or password or role not null"
return render_template("login.html",result=errmsg)
if login_info["name"] not in [ n.values()[0] for n in userlist(["name"]) ]:
errmsg = "user is not exist"
return render_template("login.html",result=errmsg)
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password error"
return render_template("login.html",result=errmsg)
else:
session["username"] = login_info["name"]
return redirect("/")
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
login_info = dict((k, v[0]) for k, v in dict(request.form).items())
if not login_info["name"] or not login_info["password"]:
errmsg = "username or password or role not null"
return render_template("login.html", result=errmsg)
if login_info["name"] not in [
n.values()[0] for n in userlist(["name"])
]:
errmsg = "user is not exist"
return render_template("login.html", result=errmsg)
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password error"
return render_template("login.html", result=errmsg)
else:
session["username"] = login_info["name"]
return redirect("/")
def cgpasswd():
if request.method == "GET":
uid = request.args.get("id")
return render_template("cgpasswd.html",uid=uid)
if request.method == "POST":
passwd_dic = dict((k,v[0]) for k ,v in dict(request.form).items())
password = checkuser({"id":passwd_dic["id"]})
print passwd_dic
print password
if passwd_dic["o_password"] != password:
errmsg = "password is error"
data = json.dumps({"tag":0,"msg":errmsg})
return data
if passwd_dic["n_password"] != passwd_dic["r_password"]:
errmsg = "The two passwords you typed do not match"
data = json.dumps({"tag":0,"msg":errmsg})
return data
pw_data={"id":passwd_dic['id'],"password":passwd_dic['n_password']}
modpasswd(pw_data)
data=json.dumps({"tag":1})
return data
def cgpasswd():
if request.method == "GET":
uid = request.args.get("id")
return render_template("cgpasswd.html",uid=uid)
if request.method == "POST":
passwd_dic = dict((k,v[0]) for k ,v in dict(request.form).items())
password = checkuser({"id":passwd_dic["id"]})
print passwd_dic
print password
if passwd_dic["o_password"] != password:
errmsg = "password is error"
data = json.dumps({"tag":0,"msg":errmsg})
return data
if passwd_dic["n_password"] != passwd_dic["r_password"]:
errmsg = "The two passwords you typed do not match"
data = json.dumps({"tag":0,"msg":errmsg})
return data
pw_data={"id":passwd_dic['id'],"password":passwd_dic['n_password']}
modpasswd(pw_data)
data=json.dumps({"tag":1})
return data
def login():
if request.method =="GET":
return render_template("login.html")
if request.method =='POST':
login_info = dict((k,v[0]) for k,v in dict(request.form).items())
print login_info
if not login_info.get("name",None) or not login_info.get("password",None):
errmsg = "username and password can not be empty"
return render_template("login.html",result=errmsg)
#把数据库中所有的name拿出来存为一个list
if login_info["name"] not in [ n.values()[0] for n in get_userlist(["name"]) ]:
namelist=[ n.values()[0] for n in get_userlist(["name"]) ]
print namelist
print login_info["name"]
errmsg = "username not exist"
return render_template("login.html",result=errmsg)
if login_info["password"] != checkuser(login_info["name"]):
errmsg = "password is error"
return render_template("login.html",result=errmsg)
else:
return redirect("/userlist")
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
login_info = dict((k,v[0]) for k,v in dict(request.form).items())
if not login_info["name"] or not login_info["password"]:
errmsg = "username or password or role not null"
data = json.dumps({"tag":0,"msg":errmsg})
return data
if login_info["name"] not in [ n.values()[0] for n in userlist(["name"]) ]:
errmsg = "user is not exist"
data = json.dumps({"tag":0,"msg":errmsg})
return data
if login_info["password"] != checkuser({'name':login_info["name"]}):
errmsg = "password error"
data = json.dumps({"tag":0,"msg":errmsg})
return data
else:
u_role = [ u['role'] for u in userlist(["name","role"]) if u['name'] == login_info["name"] ][0]
session["username"] = login_info["name"]
session["role"] = u_role
data = json.dumps({"tag":1})
return data