def del_attach_file(request):
usr_id_gy = request.session.get('usr_id_gy', '') or testid
if usr_id_gy == 0:
s = """
{
"errcode": -1,
"errmsg": "无权访问,请先关注"
} """
return HttpResponseJsonCORS(s)
fname = request.GET.get('fname', '')
sql = "SELECT fname,YEAR(ctime),MONTH(ctime) FROM file_pic_gy WHERE fname='%s' and cid = %s" % (
fname, usr_id_gy)
lT, iN = db.select(sql)
if iN > 0:
L = list(lT[0])
ext = L[0].split('.')[-1]
year = L[1]
month = L[2]
path = os.path.join(upload_path, '%s/%s' % (year, month))
if fname != '':
path = os.path.join(path, fname)
try:
os.remove(path)
except:
pass
sql = "delete from file_pic_gy WHERE fname='%s' and cid=%s" % (fname,
usr_id)
db.executesql(sql)
s = """
{
"error": false
}
"""
return HttpResponseJsonCORS(s)
def file_list(request):
menu_id = request.POST.get('menu_id', 0)
if menu_id == '3000001': menu_id = 1501
pk = request.POST.get('pk', '')
random_no = request.POST.get('random_no', '')
if pk != '':
sql = "SELECT '',file_size,ifnull(title,''),'','','',fname,YEAR(ctime),MONTH(ctime),is_pic FROM file_pic WHERE menu_id=%s and gw_id=%s and source=0" % (
menu_id, pk)
else:
sql = "SELECT '',file_size,ifnull(title,''),'','','',fname,YEAR(ctime),MONTH(ctime),is_pic FROM file_pic WHERE menu_id=%s and random_no='%s' and source=0" % (
menu_id, random_no)
print sql
lT, iN = db.select(sql)
if len(lT) == 0:
s = """{"files":[]}
"""
return HttpResponseJsonCORS(request, s)
L = []
for e in lT:
L1 = list(e)
fname = e[6]
small_name = "small_%s" % (fname)
year = e[7]
month = e[8]
L1[0] = False
is_pic = e[9]
L1[3] = ""
if is_pic == 1:
path = os.path.join(upload_path, str(year), str(month))
if not os.path.exists(os.path.join(path, small_name)):
print fname
img = Image.open(os.path.join(path, fname))
x, y = img.size
x1 = 80
y1 = 80 * y / x
try:
img = img.resize((x1, y1), Image.ANTIALIAS)
img.save(os.path.join(path, small_name))
L1[3] = os.path.join(front_url, 'attach', str(year),
str(month), small_name)
except:
pass
else:
L1[3] = os.path.join(front_url, 'attach', str(year),
str(month), small_name)
#L1[4] = "%s/get_file/?fname=%s"%(data_url,fname)
L1[4] = os.path.join(front_url, 'attach', str(year), str(month), fname)
L1[5] = "%s/del_file/?fname=%s" % (data_url, fname)
L.append(L1)
names = 'error size name thumbnail_url url delete_url'.split()
data = [dict(zip(names, d)) for d in L]
fileList = json.dumps(data, ensure_ascii=False)
s = """{"files":%s}
""" % (fileList)
#print ToGBK(s)
return HttpResponseJsonCORS(request, s)
def del_attach_file(request):
fname = request.GET.get('fname', '')
sql = "SELECT fname,YEAR(ctime),MONTH(ctime) FROM file_pic WHERE fname='%s'" % fname
lT, iN = db.select(sql)
if iN > 0:
L = list(lT[0])
ext = L[0].split('.')[-1]
year = L[1]
month = L[2]
path = os.path.join(upload_path, '%s/%s' % (year, month))
if fname != '':
path1 = os.path.join(path, fname)
try:
os.remove(path1)
except:
pass
path1 = os.path.join(path, "small_%s" % fname)
try:
os.remove(path1)
except:
pass
sql = "delete from file_pic WHERE fname='%s'" % fname
db.executesql(sql)
s = """
{
"error": false
}
"""
return HttpResponseJsonCORS(request, s)
def getProjInfo(request):
pageNo = request.POST.get('pageNo', '') or 1
pageNo = int(pageNo)
search = request.POST.get('search', '')
search = MySQLdb.escape_string(search)
sql = """select id,gc_no,cname from out_proj where 1=1
"""
if search != '':
sql += " AND (IFNULL(cname,'') LIKE '%%%s%%' OR IFNULL(gc_no,'') LIKE '%%%s%%' )" % (
search, search)
sql += "ORDER BY id DESC"
print sql
rows, iTotal_length, iTotal_Page, pageNo, select_size = db.select_for_grid(
sql, pageNo, 10)
names = 'proj_id proj_no proj_name'.split()
data = [dict(zip(names, d)) for d in rows]
L = json.dumps(data, ensure_ascii=False, cls=ComplexEncoder)
s = """
{
"errcode": 0,
"errmsg": "获取数据成功",
"data":%s,
"totalLength":%s,
"totalPage":%s,
"pageNo":%s,
"pageSize":%s
} """ % (L, iTotal_length, iTotal_Page, pageNo, select_size)
# s=ToGBK(s)
return HttpResponseJsonCORS(request, s)
def editor_attach_save(request):
#print request.POST
ext_arr = {
'image': ('gif', 'jpg', 'jpeg', 'png', 'bmp'),
'flash': ('swf', 'flv'),
'media': ('swf', 'flv', 'mp3', 'wav', 'wma', 'wmv', 'mid', 'avi',
'mpg', 'asf', 'rm', 'rmvb'),
'file': ('doc', 'docx', 'xls', 'xlsx', 'ppt', 'htm', 'html', 'txt',
'zip', 'rar', 'gz', 'bz2', '7z', 'pdf'),
}
today = datetime.date.today()
year = today.year
month = today.month
if request.method == "POST": # 请求方法为POST时,进行处理
usr_id = request.session.get('usr_id', 0)
myFile = request.FILES.get("imgFile", None) # 获取上传的文件,如果没有文件,则默认为None
if not myFile:
return alert(request, '没有找到上传的文件!')
title = myFile.name
name_ext = title.split('.')[-1].lower() #后缀名
dir_name = request.GET.get('dir', '').strip() #文件目录
#检查目录名
dirName = ext_arr.get(dir_name)
if dir_name == '':
for e in ['image', 'flash', 'media', 'file']:
v = ext_arr[e]
if name_ext in v:
dir_name = e
dirName = ext_arr.get(dir_name)
break
else:
return alert(request, '上传文件扩展名不正确.')
elif name_ext not in dirName:
return alert(request, '上传文件扩展名不正确.')
fname = "%s_%s_%s.%s" % (usr_id, time.time(), random.randint(
0, 99), name_ext)
make_sub_path(editor_path)
path = os.path.join(editor_path, str(usr_id))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
path = os.path.join(path, dir_name)
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
destination = open(os.path.join(path, fname),
'wb+') # 打开特定的文件进行二进制的写操作
for chunk in myFile.chunks(): # 分块写入文件
destination.write(chunk)
destination.close()
file_url = '%s/%s/%s/%s/%s' % (fs_url, 'editor_files', usr_id,
dir_name, fname)
s = """{
"error":0,
"url":"%s",
}
""" % (file_url)
#print s
return HttpResponseJsonCORS(request, s)
return alert(request, '未知错误.')
def alert(request, msg): #kindeditor
s = """
{
"error": 1,
"message": "%s",
}
""" % msg
return HttpResponseJsonCORS(request, s)
def setRecentlyProj(request):
#ret,errmsg,d_value = mValidateUser(request,"view",104)
#if ret!=0:
# return HttpResponseCORS(request,errmsg)
usr_id = 2 #d_value[0]
proj_id = request.POST.get('proj_id', '')
if (usr_id == 0 or proj_id == ''):
s = """
{
"errcode": -1,
"errmsg": "参数错误"
} """
return HttpResponseJsonCORS(request, s)
sql = """select id,gc_no,cname from out_proj where id=%s
""" % (proj_id)
rows, iN = db.select(sql)
proj_name = '(%s)%s' % (rows[0][1], rows[0][2])
sql = "select id from user_options where usr_id=%s and option_type=21 and option_id=%s" % (
usr_id, proj_id)
rows, iN = db.select(sql)
if iN > 0:
sql = "update user_options set option_value='%s',option_tips='%s',ctime=now(),hits=hits+1 where id=%s" % (
proj_name, proj_name, rows[0][0])
else:
sql = """insert into user_options (usr_id,option_type,option_id,option_value,option_tips,ctime,hits)
values (%s,21,%s,'%s','%s',now(),1)""" % (usr_id, proj_id,
proj_name, proj_name)
#print sql
db.executesql(sql)
s = """
{
"errcode": 0,
"errmsg": "保存成功"
} """
return HttpResponseJsonCORS(request, s)
def getRecentlyProj(request):
#ret,errmsg,d_value = mValidateUser(request,"view",104)
#if ret!=0:
# return HttpResponseCORS(request,errmsg)
usr_id = 2 #d_value[0]
sql = """select op.id,op.cname,op.gc_no from user_options u
left join out_proj op on u.option_id = op.id
where u.option_type = 21 and u.usr_id = %s
order by u.ctime desc
limit 10
""" % (usr_id)
rows, iN = db.select(sql)
names = 'proj_id proj_name proj_no'.split()
data = [dict(zip(names, d)) for d in rows]
L = json.dumps(data, ensure_ascii=False, cls=ComplexEncoder)
s = """
{
"errcode": 0,
"errmsg": "获取数据成功",
"data":%s
} """ % (L)
# s=ToGBK(s)
return HttpResponseJsonCORS(request, s)
def attach_save(request):
#print request.POST
today = datetime.date.today()
year = today.year
month = today.month
if request.method == "POST": # 请求方法为POST时,进行处理
pk = request.POST.get('pk', '')
random_no = request.POST.get('random_no', '')
usr_id_gy = request.session.get('usr_id_gy', '') or testid
# file_type = request.POST.get('file_type', '')
if usr_id_gy == 0:
s = """
{
"errcode": -1,
"errmsg": "无权访问,请先关注"
} """
return HttpResponseJsonCORS(s)
myFile = request.FILES.get("file", None) # 获取上传的文件,如果没有文件,则默认为None
if not myFile:
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(s)
title = myFile.name
f_ext = title.split('.')[-1]
fname = "gy_%s_%s_%s.%s" % (usr_id_gy, time.time(),
random.randint(0, 99), f_ext)
make_sub_path(upload_path)
path = os.path.join(upload_path, str(year))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
path = os.path.join(path, str(month))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
destination = open(os.path.join(path, fname),
'wb+') # 打开特定的文件进行二进制的写操作
for chunk in myFile.chunks(): # 分块写入文件
destination.write(chunk)
destination.close()
import imghdr
imgType = imghdr.what(os.path.join(path, fname))
if imgType in [
'rgb', 'gif', 'pbm', 'pgm', 'ppm', 'tiff', 'rast', 'xbm',
'jpeg', 'bmp', 'png'
]:
is_pic = 1
else:
is_pic = 0
if pk == '': pk = 'NULL'
sql = """insert into file_pic_gy (title,fname,file_size,is_pic,random_no,cid,ctime,file_type)
values('%s','%s',%s,%s,'%s',%s,now(),'tstj');
""" % (title, fname, myFile.size, is_pic, random_no, usr_id_gy)
#print sql
db.executesql(sql)
if is_pic == 1:
img = Image.open(os.path.join(path, fname))
x, y = img.size
if x > 80:
x1 = 80
y1 = 80 * y / x
else:
x1 = x
y1 = y
img = img.resize((x1, y1), Image.ANTIALIAS)
path = os.path.join(path, 'thumbnail')
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
img.save(os.path.join(path, fname))
pic_url = os.path.join(front_url, str(year), str(month),
'thumbnail', fname)
else:
pic_url = ""
url = os.path.join(front_url, str(year), str(month), fname)
s = """{"files":[{
"error":false,
"size":%s,
"name":"%s",
"thumbnail_url":"%s",
"url":"%s/fileUpload_gy/file_down?fname=%s",
"delete_url":"%s/fileUpload_gy/del_attach_file?fname=%s"
}]}
""" % (myFile.size, myFile.name, pic_url, data_url, fname,
data_url, fname)
return HttpResponseJsonCORS(s)
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(s)
def file_manage_json(request): #kindeditor
ext_arr = {
'image': ('gif', 'jpg', 'jpeg', 'png', 'bmp'),
'flash': ('swf', 'flv'),
'media': ('swf', 'flv', 'mp3', 'wav', 'wma', 'wmv', 'mid', 'avi',
'mpg', 'asf', 'rm', 'rmvb'),
'file': ('doc', 'docx', 'xls', 'xlsx', 'ppt', 'htm', 'html', 'txt',
'zip', 'rar', 'gz', 'bz2', 'pdf'),
}
usr_id = request.session.get('usr_id', 0)
PATH = os.path.join(editor_path, str(usr_id))
make_sub_path(PATH)
dir_name = request.POST.get('dir', '').strip()
goPath = request.POST.get('path', '').strip() #上级目录
if dir_name and dir_name not in ext_arr:
return "Invalid Directory name."
if goPath:
go = goPath.split('/')[1]
if goPath in ('.', '/', './', '', '../'):
pass
elif goPath in ext_arr:
dir_name = goPath
PATH = os.path.join(PATH, goPath)
elif go in ext_arr:
dir_name = go
PATH = os.path.join(PATH, go)
elif dir_name:
PATH = os.path.join(PATH, dir_name)
make_sub_path(PATH)
#
file_list = []
i = 0
for e in os.listdir(PATH):
if e[0] == '.': continue
mypath = os.path.join(PATH, e)
if not os.path.isfile(mypath):
d = {
'is_dir': True,
'has_file': len(os.listdir(mypath)),
'filesize': 0,
'is_photo': False,
'filetype': ''
}
else:
file_ext = e.split('.')[-1]
d = {
'is_dir': False,
'has_file': False,
'filesize': os.path.getsize(mypath),
'dir_path': '',
'is_photo': file_ext in ext_arr['image'],
'filetype': file_ext
}
t = time.strftime("%Y-%m-%d %H:%M:%S",
time.localtime(os.path.getmtime(mypath)))
d.update({'filename': e, 'datetime': t})
i += 1
file_list.append(d)
path = form.get('path')
order = form.get('order', '').lower() or 'name'
d_order['order'] = order
sorted(file_list, cmp=cmp_func)
file_url = '%s/%s/%s/%s' % (fs_url, 'editor_files', usr_id, dir_name)
result = {
'moveup_dir_path': './',
'current_dir_path': '/',
'current_url': file_url,
'total_count': len(file_list),
'file_list': file_list
}
return HttpResponseJsonCORS(request, result)
def attach_save(request):
#print request.POST
today = datetime.date.today()
year = today.year
month = today.month
if request.method == "POST": # 请求方法为POST时,进行处理
menu_id = request.POST.get('menu_id', 0)
pk = request.POST.get('pk', '')
source = request.POST.get('option', '')
if source == '': source = 0
random_no = request.POST.get('random_no', '')
ret, errmsg, d_value = mValidateUser(request, "view", menu_id)
if ret != 0:
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(request, s)
usr_id = d_value[0]
usr_name = d_value[1]
myFile = request.FILES.get("files[]", None) # 获取上传的文件,如果没有文件,则默认为None
if not myFile:
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(request, s)
title = myFile.name
f_ext = title.split('.')[-1]
fname = "%s_%s_%s.%s" % (usr_id, time.time(), random.randint(
0, 99), f_ext)
small_name = "small_%s" % (fname)
if f_ext.upper() in ['GIF', 'JPG', 'JPEG', 'PNG', 'BMP']:
is_pic = 1
else:
is_pic = 0
if pk == '': pk = 'NULL'
sql = """insert into file_pic (menu_id,gw_id,title,fname,file_size,is_pic,random_no,cid,cusrname,ctime,source)
values(%s,%s,'%s','%s',%s,%s,'%s',%s,'%s',now(),%s);
""" % (menu_id, pk, title, fname, myFile.size, is_pic, random_no,
usr_id, usr_name, source)
#print sql
db.executesql(sql)
sql = "select last_insert_id();"
rows, iN = db.select(sql)
file_id = rows[0][0]
make_sub_path(upload_path)
path = os.path.join(upload_path, str(year))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
path = os.path.join(path, str(month))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
destination = open(os.path.join(path, fname),
'wb+') # 打开特定的文件进行二进制的写操作
for chunk in myFile.chunks(): # 分块写入文件
destination.write(chunk)
destination.close()
import imghdr
imgType = imghdr.what(os.path.join(path, fname))
if imgType in [
'rgb', 'gif', 'pbm', 'pgm', 'ppm', 'tiff', 'rast', 'xbm',
'jpeg', 'bmp', 'png'
]:
is_pic = 1
else:
is_pic = 0
sql = 'update file_pic set is_pic=%s where id=%s' % (is_pic, file_id)
db.executesql(sql)
if is_pic == 1:
img = Image.open(os.path.join(path, fname))
x, y = img.size
x1 = 80
y1 = 80 * y / x
try:
img = img.resize((x1, y1), Image.ANTIALIAS)
img.save(os.path.join(path, small_name))
pic_url = os.path.join(front_url, 'attach', str(year),
str(month), small_name)
except:
pic_url = ""
else:
pic_url = ""
url = os.path.join(front_url, 'attach', str(year), str(month), fname)
s = """{"files":[{
"error":false,
"file_id":%s,
"size":%s,
"name":"%s",
"thumbnail_url":"%s",
"url":"%s",
"delete_url":"%s/del_file/?fname=%s"
}]}
""" % (file_id, myFile.size, myFile.name, pic_url, url, data_url,
fname)
return HttpResponseJsonCORS(request, s)
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(request, s)
def attach_save_qy(request):
#print request.POST
today = datetime.date.today()
year = today.year
month = today.month
if request.method == "POST": # 请求方法为POST时,进行处理
pk = request.POST.get('pk', '')
random_no = request.POST.get('random_no', '')
usr_id_qy = request.session.get('usr_id_qy', '') or testid
file_type = ''
btntype = request.POST.get('btnType', '') or 'NULL'
# print request.POST
if str(btntype) == '0':
file_type = 'jb'
if str(btntype) == '-1':
file_type = 'sbld'
if str(btntype) == '1':
file_type = 'tjsl'
if str(btntype) == '2':
file_type = 'jgsb'
if str(btntype) == '3':
file_type = 'jgqr'
if str(btntype) == '4':
file_type = 'jsz'
if usr_id_qy == 0:
s = """
{
"errcode": -1,
"errmsg": "无权访问,请先关注"
} """
return HttpResponseJsonCORS(s)
myFile = request.FILES.get("file", None) # 获取上传的文件,如果没有文件,则默认为None
# print myFile
if not myFile:
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(s)
title = myFile.name
f_ext = title.split('.')[-1]
fname = "qy_%s_%s_%s.%s" % (usr_id_qy, time.time(),
random.randint(0, 99), f_ext)
if f_ext.upper() in ['GIF', 'JPG', 'PNG', 'BMP']:
is_pic = 1
else:
is_pic = 0
if pk == '': pk = 'NULL'
sql = """insert into file_pic_lw (m_id,title,fname,file_size,is_pic,random_no,cid,ctime,file_type,file_type_id)
values(%s,'%s','%s',%s,%s,'%s',%s,now(),'%s',%s);
""" % (pk, title, fname, myFile.size, is_pic, random_no,
usr_id_qy, file_type, btntype)
# print sql
db.executesql(sql)
make_sub_path(upload_path)
path = os.path.join(upload_path, str(year))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
path = os.path.join(path, str(month))
make_sub_path(path) #检查目录是否存在,如果不存在,生成目录 make_sub_path
destination = open(os.path.join(path, fname),
'wb+') # 打开特定的文件进行二进制的写操作
for chunk in myFile.chunks(): # 分块写入文件
destination.write(chunk)
destination.close()
# if is_pic == 1: pic_url = "%s/get_file/?fname=%s"%(data_url,fname)
# else: pic_url=""
# s = """{"files":[{
# "error":false,
# "size":%s,
# "fname":"%s"
# }]}
# """%(myFile.size,fname)
if is_pic == 1:
pic_url = "%s/fileUpload/file_down?fname=%s" % (data_url, fname)
else:
pic_url = ""
s = """{"files":[{
"error":false,
"size":%s,
"name":"%s",
"thumbnail_url":"%s",
"url":"%s/fileUpload/file_down?fname=%s",
"delete_url":"%s/fileUpload/del_attach_file?fname=%s"
}]}
""" % (myFile.size, myFile.name, pic_url, data_url, fname,
data_url, fname)
return HttpResponseJsonCORS(s)
s = """
{
"error": true
}
"""
return HttpResponseJsonCORS(s)