def settings():
if session.get('logged_in'):
if request.method == 'POST':
user, s = helpers.changeUser()
if request.form['password'] != "":
user.password = helpers.hashPassword(request.form['password'])
if request.form['email'] != "": user.email = request.form['email']
if request.form['c1'] != "": user.c1 = request.form['c1']
if request.form['c2'] != "": user.c2 = request.form['c2']
s.commit()
return json.dumps({'status': 'Saved'})
user = helpers.getUser()
return render_template('settings.html', user=user)
return redirect(url_for('login'))
def register():
if not session.get('logged_in'):
form = LoginForm(request.form)
if request.method == 'POST':
username = request.form['username'].lower()
password = helpers.hashPassword(request.form['password'])
email = request.form['email']
if form.validate():
if not helpers.usernameTaken(username):
s = helpers.getSession()
u = User(username=username,
password=password,
email=email,
c1="#360033",
c2="#0b8793")
s.add(u)
s.commit()
session['logged_in'] = True
session['username'] = username
return json.dumps({'status': 'Register successful'})
return json.dumps({'status': 'Username taken'})
return json.dumps({'status': 'Both fields required'})
return render_template('login.html', form=form)
return redirect(url_for('login'))
print '[+] Creating "seeker" account...'
while True:
password = getpass.getpass('Please enter "seeker" password: '******'Repeat: ')
if password == password2:
break
print '[+] Encrypting Master Key for "seeker"...'
KDFSalt = crypto.randomBytes(crypto.SALT_LENGTH)
keyFromPassword = crypto.keyFromText(password, KDFSalt)
EMK = crypto.encrypt(MASTER_KEY, keyFromPassword)
print '[+] Storing Master Key checksum...'
cksum = checksum(MASTER_KEY)
gc = GlobalConfig(key='master_key_checksum', value=cksum)
session.add(gc)
del MASTER_KEY
u = User(username='******',
password=hashPassword(password),
email='root@localhost',
active=True,
encrypted_master_key=EMK,
b64_kdf_salt=base64.b64encode(KDFSalt))
session.add(u)
session.commit()
if password==password2:
break
print '[+] Encrypting Master Key for "seeker"...'
KDFSalt = crypto.randomBytes(crypto.SALT_LENGTH)
keyFromPassword = crypto.keyFromText(password, KDFSalt)
EMK = crypto.encrypt(MASTER_KEY, keyFromPassword)
print '[+] Storing Master Key checksum...'
cksum = checksum(MASTER_KEY)
gc = GlobalConfig(
key = 'master_key_checksum',
value = cksum
)
session.add(gc)
del MASTER_KEY
u = User(
username = '******',
password = hashPassword(password),
email = 'root@localhost',
active = True,
encrypted_master_key = EMK,
b64_kdf_salt = base64.b64encode(KDFSalt)
)
session.add(u)
session.commit()
