def post(self): old_pwd = self.get_argument("old_password", None) user_pwd = self.get_argument("user_password", None) repeat_pwd = self.get_argument("repeat_password", None) if user_pwd == repeat_pwd: if check_password(old_pwd, self.current_user['password'], self.current_user['salt']): pwd, salt = encrypt_password(user_pwd) if pwd is not 'error' and self.db.execute_rowcount("update usr set password=%s, salt=%s where id=%s;", *(pwd, salt, self.current_user['id'])): self.clear_cookie("sid") self.session.clear() self.write('done') else: self.write("olderror") else: self.write("newerror") self.flush()
def post(self): user_name = self.PyStrEscape(self.get_argument("user_name", None)) email = self.PyStrEscape(self.get_argument("email", None)) if user_name and email: user = self.db.get("select * from usr where name=%s and email=%s;", *(user_name.lower(), email.lower())) if user: pwd = salt_generator(size=12) enc_pwd, salt = encrypt_password(pwd) if self.db.execute_rowcount("update usr set password=%s, salt=%s where id=%s;", *(enc_pwd, salt, user['id'])): content= "Yours new password is:\n" + pwd + "\nplease use this password login website, and modify your password." sendmail(email, content) self.write('done') else: self.write("error") else: self.write("undone") self.flush()
def post(self): user_name = self.PyStrEscape(self.get_argument("user_name", None)) user_password = self.get_argument("user_password", None) repeat_password = self.get_argument("repeat_password", None) email = self.PyStrEscape(self.get_argument('email', None)) if user_password == repeat_password: enc_pwd, salt = encrypt_password(user_password) if enc_pwd is not 'error': try: self.db.execute("insert into usr(name, password, salt, email, grade) values(%s, %s, %s, %s, 0);", *(user_name.lower(), enc_pwd, salt, email.lower())) self.write('done') except IntegrityError: self.write('db error') else: self.write('operational error') else: self.write('pwd error') self.flush()
def post(self): old_pwd = self.get_argument("old_password", None) user_pwd = self.get_argument("user_password", None) repeat_pwd = self.get_argument("repeat_password", None) if user_pwd == repeat_pwd: if check_password(old_pwd, self.current_user['password'], self.current_user['salt']): pwd, salt = encrypt_password(user_pwd) if pwd is not 'error' and self.db.execute_rowcount( "update usr set password=%s, salt=%s where id=%s;", *(pwd, salt, self.current_user['id'])): self.clear_cookie("sid") self.session.clear() self.write('done') else: self.write("olderror") else: self.write("newerror") self.flush()
def post(self): user_name = self.PyStrEscape(self.get_argument("user_name", None)) user_password = self.get_argument("user_password", None) repeat_password = self.get_argument("repeat_password", None) email = self.PyStrEscape(self.get_argument('email', None)) if user_password == repeat_password: enc_pwd, salt = encrypt_password(user_password) if enc_pwd is not 'error': try: self.db.execute( "insert into usr(name, password, salt, email, grade) values(%s, %s, %s, %s, 0);", *(user_name.lower(), enc_pwd, salt, email.lower())) self.write('done') except IntegrityError: self.write('db error') else: self.write('operational error') else: self.write('pwd error') self.flush()
def post(self): user_name = self.PyStrEscape(self.get_argument("user_name", None)) email = self.PyStrEscape(self.get_argument("email", None)) if user_name and email: user = self.db.get("select * from usr where name=%s and email=%s;", *(user_name.lower(), email.lower())) if user: pwd = salt_generator(size=12) enc_pwd, salt = encrypt_password(pwd) if self.db.execute_rowcount( "update usr set password=%s, salt=%s where id=%s;", *(enc_pwd, salt, user['id'])): content = "Yours new password is:\n" + pwd + "\nplease use this password login website, and modify your password." sendmail(email, content) self.write('done') else: self.write("error") else: self.write("undone") self.flush()