def post(self): username = self.get_argument('username' , None) passwd = self.get_argument('passwd' , None) if username and passwd: #转码gb2312后md5 . 中文通用 md5pass = hashlib.md5(passwd.encode(encoding="gb2312")) passwd = md5pass.hexdigest() db = database() if db!=None: cursor = db.cursor() cursor.execute("SELECT id,username,passwd FROM users WHERE username = %(username)s" ,{"username":username} ) row = cursor.fetchone() if row != None and row[1] == passwd: self.set_secure_cookie("user" , username) self.redirect("/") elif(row == None): self.form_error("username" , '用户名不能为空!') elif(row[1] != passwd ): print( "%s :: %s " % (row[1] , passwd)) self.form_error("passwd" , '密码不正确') db.close() elif username == None: self.form_error('username' , '登陆名不能为空') elif passwd == None: self.form_error('passwd' , '密码不能为空') self.write(json.dumps(self._form_error))
def get(self): db = database() cursor = db.cursor() cursor.execute("SELECT id,title,content FROM blog_content WHERE is_del=0 ORDER BY create_time DESC") rows = cursor.fetchall() cursor.close() db.close() self.render("edit_index.html" , rows = rows)
def delete(self): id = self.get_argument("id" , None) sql = "UPDATE blog_content SET is_del=1 WHERE id=%(id)s" db = database() cursor = db.cursor() cursor.execute(sql,{'id':id}) cursor.close() db.close() self.write(1)
def post(self): title = self.get_argument('title' , None) content = self.get_argument('content' , None) if title and content: db = database() cursor = db.cursor() insert_sql = ("INSERT INTO blog_content " "(id,user_id , cate_id , title , content ,create_time,tags)" "VALUES " "(NULL,%(user_id)s , %(cate_id)s ,%(title)s , %(content)s , %(times)s , %(tags)s)") data = { 'user_id':1, 'cate_id':1, 'title':title, 'content':content, 'times':datetime.datetime.now(), 'tags':'', } cursor.execute(insert_sql,data) cursor.close() db.close() self.redirect("/blog_edit?t=%s" % (time.time(),) ,permanent=True)