def GET(self,id): try: articleid=int(id) content = db.select(artt,where="id = %d"%articleid) if len(content)==0: web.notfound() comment = db.select(commt,where="articleid =%d"%articleid,order="date") return render.article(content[0],comment,len(comment),isadmin()) except: return render.error()
def GET(self): try: comment = db.select(msg,limit="0,10",order="date DESC") count = int(db.query("select count(*) from "+msg)[0]["count(*)"]) return render.about(isadmin(),comment,count>10) except: return render.error()
def GET(self,aid): if isadmin(): try: data=db.select(artt,where="id="+aid) return render.edit(True,int(aid),data[0]) except: return render.error() else: return render.error()
def GET(self,aid,cid): if isadmin(): try: db.delete(commt,where="id ="+cid) count=int(db.select(artt,what="comment",where="id="+aid)[0]["comment"])-1 db.update(artt,where="id="+aid,comment=count) raise web.seeother('/article/'+aid) except: return render.error() else: return render.error()
def isadmin(): if session.id == 0: return False data = db.select(usert,where="id ="+str(session.id)) if len(data)==0: return False data = data[0] if md5.new((data.user+data.password+str(session.seed))).hexdigest() == session.hash: return True else: return False
def POST(self,aid): if not isadmin(): return render.error() try: data =web.input() text = data.content atitle = data.title if not len(db.select(script))==0: db.delete(script) db.update(artt,where="id="+aid,title=atitle,content=text) raise web.seeother('/') except: return render.error()
def POST(self,aid): try: articleid = int(aid) con = web.input() if isadmin(): id=session.id user=db.select(usert,where=("id="+str(id)))[0].user mail="none" hp='/' else: mail=con.get('email','none') user=con.get('author','none') hp =con.get('hp','') if hp.find("http://")!=0: hp = "http://"+hp id=0 data =con.get('comment','none') db.insert(commt,author=user,email=mail,content=web.websafe(data),id=0,articleid=articleid,homepage=hp,date=web.SQLLiteral("NOW()"),usrid=id) count=int(db.select(artt,what="comment",where=("id = "+aid))[0]["comment"])+1 db.update(artt,where=("id = "+aid),comment=count) raise web.seeother('/article/'+aid) except: return render.error()
def GET(self): try: page = int(web.input(p='1').p)-1 query = db.select(artt,limit="%d,5"%(page*5),order="date DESC") if len(query)==0 and page!=0: return render.error() count = int(db.query("select count(*) from "+artt)[0]["count(*)"]) ne=pre=0 maxpage = count/5 if maxpage%5 !=0: maxpage+=1 if page>0: pre = page if page+1<maxpage: ne = page+2 return render.index(query,pre,ne,isadmin()) except: return render.error()
def POST(self): postdata = web.input() usrid = postdata.get("usrname","") pw = postdata.get("password","") if pw=='' or usrid=='': return render.error() data = db.select(usert,where=('user="******"')) if(len(data)==0): return render.error() pw+= salt pw = md5.new(pw).hexdigest() if pw!=data[0].password: return render.error() seed = random.randint(0,100000) session.hash = md5.new((usrid+pw+str(seed))).hexdigest() session.id = 1 session.seed = seed raise web.seeother('/')
def POST(self): try: con = web.input() if isadmin(): id=session.id user=db.select(usert,where=("id="+str(id)))[0].user hp='/' mail="none" else: mail=con.get('email','none') user=con.get('author','none') hp =con.get('hp','') if hp.find("http://")!=0: hp = "http://"+hp id=0 data =con.get('comment','none') db.insert(msg,author=user,email=mail,content=web.websafe(data),id=0,homepage=hp,date=web.SQLLiteral("NOW()"),usrid=id) raise web.seeother('/about') except: return render.error()
def get_by_id(id): row = db.select("work", what="id,title", where="id=$id", vars={"id": id}) if row: return row[0] else: return None
def getServerList(p): page_size=8 start =(p-1)*page_size offset=page_size server=db.select('servers',order='id desc',limit="$start,$offset",vars=locals()) return server
def has(title): row = db.select("work", where="title=$title", vars={"title": title}) return row and row[0]["id"] or None
def getUserList(): return db.select('users')
def getConfig(): query = db.select('config') return query[0]
def getUserList(): return db.select('users', order="lastlogin DESC")
def getConfig(): query = db.select('config') return query[0]
def getUserList(): return db.select('users', order="lastlogin DESC")
def get_by_id(id): row = db.select("author",what="id,name",where="id=$id",vars={"id":id}) if row: return row[0] else: return None
def has(name): row = db.select("author",where="name=$name",vars={"name":name}); return row and row[0]["id"] or None
def has(title): row = db.select("work",where="title=$title",vars={"title":title}); return row and row[0]["id"] or None
def GET(self): try: comment = db.select(msg,limit="0,100",order="date DESC") return render.msg(isadmin(),comment) except: return render.error()
def get_by_id(id): row = db.select("work",what="id,title",where="id=$id",vars={"id":id}) if row: return row[0] else: return None
def GET(self): messages = db.select('message', order='id DESC' ,limit=15) return render.message(messages)