def post(self, rule_id):
code = self.get_argument("code")
db = dbconnector().db
sql = "update t_rule set code='%s' where id=%s" % (code.replace(
"'", "''").replace("%", "%%"), rule_id)
db.execute(sql)
self.write("success")
def get(self):
form =RuleForm()
db = dbconnector().db
user = self.getUser(db)
rules = self.getRules(db,user["id"])
if not rules:
rules = []
self.render("policy/create.html",form=form,rules=rules,crule=None)
pass
def get(self):
form = RuleForm()
db = dbconnector().db
user = self.getUser(db)
rules = self.getRules(db, user["id"])
if not rules:
rules = []
self.render("policy/create.html", form=form, rules=rules, crule=None)
pass
def get(self,rule_id=None):
db = dbconnector().db
username = tornado.escape.xhtml_escape(self.current_user)
user = db.get("select id from t_user where username='******'"%username)
rules = db.query("select * from t_rule where user_id=%s"%user["id"])
if not rules:
self.redirect("/policy/rule/create")
return;
if rule_id:
crule = db.get("select * from t_rule where id=%s"%rule_id)
else:
crule = rules[0]
self.render("policy/policy.html",rules=rules,crule=crule)
def get(self, rule_id=None):
db = dbconnector().db
username = tornado.escape.xhtml_escape(self.current_user)
user = db.get("select id from t_user where username='******'" % username)
rules = db.query("select * from t_rule where user_id=%s" % user["id"])
if not rules:
self.redirect("/policy/rule/create")
return
if rule_id:
crule = db.get("select * from t_rule where id=%s" % rule_id)
else:
crule = rules[0]
self.render("policy/policy.html", rules=rules, crule=crule)
def post(self):
user = {"username":self.get_argument('username'),
"password":self.get_argument('password')}
form = SigninForm()
form.fillData(user)
if form.validate():
db = dbconnector().db
cuser = db.get('select * from t_user where username="******"'%(user["username"]))
if cuser and cuser.password == user["password"]:
self.set_secure_cookie("user", user["username"])
self.redirect("/")
return
else:
form.errors.append("用户名或密码错误")
self.render("auth/signin.html",form=form)
def post(self):
form = RuleForm()
rule = {"name":self.get_argument("name"),
"desc":self.get_argument("desc")}
form.fillData(rule)
if form.validate():
db = dbconnector().db
cuser = self.getUser(db)
crule = db.get("select * from t_rule where name='%s' and user_id='%s'"%(rule['name'],cuser['id']))
if not crule:
ruleid = db.execute("INSERT INTO t_rule (name,description,user_id) VALUES ('%s','%s','%s')"%(rule['name'],rule['desc'],cuser['id']))
self.redirect("/policy/rule/%s"%ruleid)
return
else:
form.errors.append("规则已存在")
self.render("policy/create.html",form=form,rules=rules)
def post(self):
user = {
"username": self.get_argument('username'),
"password": self.get_argument('password')
}
form = SigninForm()
form.fillData(user)
if form.validate():
db = dbconnector().db
cuser = db.get('select * from t_user where username="******"' %
(user["username"]))
if cuser and cuser.password == user["password"]:
self.set_secure_cookie("user", user["username"])
self.redirect("/")
return
else:
form.errors.append("用户名或密码错误")
self.render("auth/signin.html", form=form)
def post(self):
user = {"username":self.get_argument('username'),
"email":self.get_argument('email'),
"password":self.get_argument('password'),
"repassword":self.get_argument('repassword')}
form = SignupForm()
form.fillData(user)
if form.validate():
db = dbconnector().db
cuser = db.get('select * from t_user where username="******"'%(user["username"]))
if not cuser:
insertsql = "INSERT INTO t_user (username,email,password) VALUES ('%s','%s','%s')"%(user["username"],user["email"],user["password"])
rel = db.execute(insertsql)
self.set_secure_cookie("user", user["username"])
self.redirect("/")
return
else:
form.errors.append("用户%s已存在!"%user["username"])
self.render("auth/signup.html",form=form)
def post(self):
form = RuleForm()
rule = {
"name": self.get_argument("name"),
"desc": self.get_argument("desc")
}
form.fillData(rule)
if form.validate():
db = dbconnector().db
cuser = self.getUser(db)
crule = db.get(
"select * from t_rule where name='%s' and user_id='%s'" %
(rule['name'], cuser['id']))
if not crule:
ruleid = db.execute(
"INSERT INTO t_rule (name,description,user_id) VALUES ('%s','%s','%s')"
% (rule['name'], rule['desc'], cuser['id']))
self.redirect("/policy/rule/%s" % ruleid)
return
else:
form.errors.append("规则已存在")
self.render("policy/create.html", form=form, rules=rules)
def post(self):
user = {
"username": self.get_argument('username'),
"email": self.get_argument('email'),
"password": self.get_argument('password'),
"repassword": self.get_argument('repassword')
}
form = SignupForm()
form.fillData(user)
if form.validate():
db = dbconnector().db
cuser = db.get('select * from t_user where username="******"' %
(user["username"]))
if not cuser:
insertsql = "INSERT INTO t_user (username,email,password) VALUES ('%s','%s','%s')" % (
user["username"], user["email"], user["password"])
rel = db.execute(insertsql)
self.set_secure_cookie("user", user["username"])
self.redirect("/")
return
else:
form.errors.append("用户%s已存在!" % user["username"])
self.render("auth/signup.html", form=form)
def post(self,rule_id):
code = self.get_argument("code")
db = dbconnector().db
sql = "update t_rule set code='%s' where id=%s"%(code.replace("'","''").replace("%","%%"),rule_id)
db.execute(sql)
self.write("success")