def insert_user(account,password,user_right): db = DB() passwd = HmacPasswd(password).get_hmacpassed() select_sql = "SELECT user_no FROM account_for_disease WHERE account = '%s';" % account re1 = db.execute(select_sql) if re1 > 0: sys_no = db.fetchone()[0] update_sql = "UPDATE account_for_disease SET password = '******',user_right = '%s' " \ "WHERE account = '%s' AND user_no = '%s';" % (passwd,user_right,account,sys_no) db.execute(update_sql) print "UPDATA Success" else: select_sql = "SELECT max(user_no) FROM account_for_disease;" re = db.execute(select_sql) user_no = db.fetchone()[0] + 1 insert_sql = "INSERT INTO account_for_disease (user_no,account,password,user_right) " \ "VALUES ('%s','%s','%s','%s');" % (user_no,account,passwd,user_right) db.execute(insert_sql) print "Insert Success"
# read config config = ConfigParser.ConfigParser() config.read("../config.conf") env = config.get("Env", "env") remote_mysql_host = config.get(env, "remote_mysql_host") web_listen_ip = config.get(env, "web_listen_ip") web_port = config.get(env, "web_port") API_service = "http://%s:%s" % (config.get(env, "api_host"), config.get(env, "api_port")) login_manager = LoginManager() csrf = CsrfProtect() db = None try: db = DB() db.connect() except Exception, e: print e class User(UserMixin): account = "" def get_id(self): return self.account @login_manager.user_loader def load_user(account): db.execute("select password,user_right from account_for_disease where account='%s';" % account) data = db.fetchone()