def GET(self,id):
try:
articleid=int(id)
content = db.select(artt,where="id = %d"%articleid)
if len(content)==0:
web.notfound()
comment = db.select(commt,where="articleid =%d"%articleid,order="date")
return render.article(content[0],comment,len(comment),isadmin())
except:
return render.error()
def GET(self):
try:
comment = db.select(msg,limit="0,10",order="date DESC")
count = int(db.query("select count(*) from "+msg)[0]["count(*)"])
return render.about(isadmin(),comment,count>10)
except:
return render.error()
def GET(self,aid):
if isadmin():
try:
data=db.select(artt,where="id="+aid)
return render.edit(True,int(aid),data[0])
except:
return render.error()
else:
return render.error()
def GET(self,aid,cid):
if isadmin():
try:
db.delete(commt,where="id ="+cid)
count=int(db.select(artt,what="comment",where="id="+aid)[0]["comment"])-1
db.update(artt,where="id="+aid,comment=count)
raise web.seeother('/article/'+aid)
except:
return render.error()
else:
return render.error()
def isadmin():
if session.id == 0:
return False
data = db.select(usert,where="id ="+str(session.id))
if len(data)==0:
return False
data = data[0]
if md5.new((data.user+data.password+str(session.seed))).hexdigest() == session.hash:
return True
else:
return False
def POST(self,aid):
if not isadmin():
return render.error()
try:
data =web.input()
text = data.content
atitle = data.title
if not len(db.select(script))==0:
db.delete(script)
db.update(artt,where="id="+aid,title=atitle,content=text)
raise web.seeother('/')
except:
return render.error()
def POST(self,aid):
try:
articleid = int(aid)
con = web.input()
if isadmin():
id=session.id
user=db.select(usert,where=("id="+str(id)))[0].user
mail="none"
hp='/'
else:
mail=con.get('email','none')
user=con.get('author','none')
hp =con.get('hp','')
if hp.find("http://")!=0:
hp = "http://"+hp
id=0
data =con.get('comment','none')
db.insert(commt,author=user,email=mail,content=web.websafe(data),id=0,articleid=articleid,homepage=hp,date=web.SQLLiteral("NOW()"),usrid=id)
count=int(db.select(artt,what="comment",where=("id = "+aid))[0]["comment"])+1
db.update(artt,where=("id = "+aid),comment=count)
raise web.seeother('/article/'+aid)
except:
return render.error()
def GET(self):
try:
page = int(web.input(p='1').p)-1
query = db.select(artt,limit="%d,5"%(page*5),order="date DESC")
if len(query)==0 and page!=0:
return render.error()
count = int(db.query("select count(*) from "+artt)[0]["count(*)"])
ne=pre=0
maxpage = count/5
if maxpage%5 !=0:
maxpage+=1
if page>0:
pre = page
if page+1<maxpage:
ne = page+2
return render.index(query,pre,ne,isadmin())
except:
return render.error()
def POST(self):
postdata = web.input()
usrid = postdata.get("usrname","")
pw = postdata.get("password","")
if pw=='' or usrid=='':
return render.error()
data = db.select(usert,where=('user="******"'))
if(len(data)==0):
return render.error()
pw+= salt
pw = md5.new(pw).hexdigest()
if pw!=data[0].password:
return render.error()
seed = random.randint(0,100000)
session.hash = md5.new((usrid+pw+str(seed))).hexdigest()
session.id = 1
session.seed = seed
raise web.seeother('/')
def POST(self):
try:
con = web.input()
if isadmin():
id=session.id
user=db.select(usert,where=("id="+str(id)))[0].user
hp='/'
mail="none"
else:
mail=con.get('email','none')
user=con.get('author','none')
hp =con.get('hp','')
if hp.find("http://")!=0:
hp = "http://"+hp
id=0
data =con.get('comment','none')
db.insert(msg,author=user,email=mail,content=web.websafe(data),id=0,homepage=hp,date=web.SQLLiteral("NOW()"),usrid=id)
raise web.seeother('/about')
except:
return render.error()
def get_by_id(id):
row = db.select("work", what="id,title", where="id=$id", vars={"id": id})
if row:
return row[0]
else:
return None
def getServerList(p):
page_size=8
start =(p-1)*page_size
offset=page_size
server=db.select('servers',order='id desc',limit="$start,$offset",vars=locals())
return server
def has(title):
row = db.select("work", where="title=$title", vars={"title": title})
return row and row[0]["id"] or None
def getUserList():
return db.select('users')
def getConfig():
query = db.select('config')
return query[0]
def getUserList():
return db.select('users', order="lastlogin DESC")
def getConfig():
query = db.select('config')
return query[0]
def getUserList():
return db.select('users', order="lastlogin DESC")
def get_by_id(id):
row = db.select("author",what="id,name",where="id=$id",vars={"id":id})
if row:
return row[0]
else:
return None
def has(name):
row = db.select("author",where="name=$name",vars={"name":name});
return row and row[0]["id"] or None
def has(title):
row = db.select("work",where="title=$title",vars={"title":title});
return row and row[0]["id"] or None
def GET(self):
try:
comment = db.select(msg,limit="0,100",order="date DESC")
return render.msg(isadmin(),comment)
except:
return render.error()
def get_by_id(id):
row = db.select("work",what="id,title",where="id=$id",vars={"id":id})
if row:
return row[0]
else:
return None
def GET(self):
messages = db.select('message', order='id DESC' ,limit=15)
return render.message(messages)
