def settings(): if session.get('logged_in'): if request.method == 'POST': user, s = helpers.changeUser() if request.form['password'] != "": user.password = helpers.hashPassword(request.form['password']) if request.form['email'] != "": user.email = request.form['email'] if request.form['c1'] != "": user.c1 = request.form['c1'] if request.form['c2'] != "": user.c2 = request.form['c2'] s.commit() return json.dumps({'status': 'Saved'}) user = helpers.getUser() return render_template('settings.html', user=user) return redirect(url_for('login'))
def register(): if not session.get('logged_in'): form = LoginForm(request.form) if request.method == 'POST': username = request.form['username'].lower() password = helpers.hashPassword(request.form['password']) email = request.form['email'] if form.validate(): if not helpers.usernameTaken(username): s = helpers.getSession() u = User(username=username, password=password, email=email, c1="#360033", c2="#0b8793") s.add(u) s.commit() session['logged_in'] = True session['username'] = username return json.dumps({'status': 'Register successful'}) return json.dumps({'status': 'Username taken'}) return json.dumps({'status': 'Both fields required'}) return render_template('login.html', form=form) return redirect(url_for('login'))
print '[+] Creating "seeker" account...' while True: password = getpass.getpass('Please enter "seeker" password: '******'Repeat: ') if password == password2: break print '[+] Encrypting Master Key for "seeker"...' KDFSalt = crypto.randomBytes(crypto.SALT_LENGTH) keyFromPassword = crypto.keyFromText(password, KDFSalt) EMK = crypto.encrypt(MASTER_KEY, keyFromPassword) print '[+] Storing Master Key checksum...' cksum = checksum(MASTER_KEY) gc = GlobalConfig(key='master_key_checksum', value=cksum) session.add(gc) del MASTER_KEY u = User(username='******', password=hashPassword(password), email='root@localhost', active=True, encrypted_master_key=EMK, b64_kdf_salt=base64.b64encode(KDFSalt)) session.add(u) session.commit()
if password==password2: break print '[+] Encrypting Master Key for "seeker"...' KDFSalt = crypto.randomBytes(crypto.SALT_LENGTH) keyFromPassword = crypto.keyFromText(password, KDFSalt) EMK = crypto.encrypt(MASTER_KEY, keyFromPassword) print '[+] Storing Master Key checksum...' cksum = checksum(MASTER_KEY) gc = GlobalConfig( key = 'master_key_checksum', value = cksum ) session.add(gc) del MASTER_KEY u = User( username = '******', password = hashPassword(password), email = 'root@localhost', active = True, encrypted_master_key = EMK, b64_kdf_salt = base64.b64encode(KDFSalt) ) session.add(u) session.commit()