def accountMaker():
print('create post')
print(userExists(request.form.get('username')))
if not userExists(request.form.get('username')):
insertUser4(request.form.get('username'), request.form.get('password'),
request.form.get('firstname'),
request.form.get('lastname'))
print('user Inserted')
print('create pass')
def pdfAdder():
print('create post')
for a1, a2 in request.args:
print(a1 + "\t" + a2)
print(userExists(request.form.get('username')))
if userExists(request.form.get('username')):
print('User exists, reading pdf')
print(request.form.get('filename'))
print(request.form.get('filesize'))
return 'True'
print('create pass')
return 'False'
def isRegistered():
USER_NEW = "new"
USER_EXISTS = "exists"
uname = request.json['username']
if database.userExists(uname):
return USER_EXISTS
return USER_NEW
def register_user(self, username, user_salt, user_verifier):
if (database.userExists(username)):
raise TypeError("Username Taken")
database.newUser(username, [
base64.b64encode(self.login_lib.hexToBytes(user_salt)),
base64.b64encode(self.login_lib.hexToBytes(user_verifier)), b''
], [])
return True
def register_user_encrypted(self, username, user_salt, user_verifier):
if (database.userExists(username)):
raise TypeError("Username Taken")
database.newUser(username, [
base64.b64encode(self.crypto_lib.rsa_decrypt(user_salt)),
base64.b64encode(self.crypto_lib.rsa_decrypt(user_verifier)), b''
], [])
return True
def addCredential():
content = request.json
for key in content:
content[key] = enc.encrypt_string(content[key])
userID = request.args.get('user')
# print(userID, userID is not None, all(keys in content for keys in (
# 'website', 'username', 'password')) and len(content) == 3, db.userExists(int(userID)))
if userID is not None and all(keys in content for keys in (
'website', 'username',
'password')) and len(content) == 3 and db.userExists(userID):
content['userID'] = userID
# print(content)
if db.addWebsitePass(content):
return jsonify({'status': 'success'})
return Response(status=400)
def create_user_session_encrypted(self, username, a_b64):
if (not database.userExists(username)):
raise TypeError("Username does not exist")
login_data = database.getLoginDataFromUser(username)
b_bytes, B_bytes, n_bytes, h_bytes = self.login_lib.generate_b(
base64.b64decode(login_data[1]))
currentSessions = database.getSessionsFromUser(username)
if (currentSessions is not None):
while (h_bytes in currentSessions):
b_bytes, B_bytes, n_bytes, h_bytes = self.login_lib.generate_b(
v)
database.newSession(
username, base64.b64encode(h_bytes),
base64.b64encode(self.crypto_lib.rsa_decrypt(a_b64)),
base64.b64encode(b_bytes), base64.b64encode(B_bytes), b'', b'')
return (base64.b64encode(B_bytes), base64.b64encode(n_bytes))
def validate_user_session(self, username, h_hex, mv_hex, deviceID):
if (not database.userExists(username)):
raise TypeError("Username does not exist")
h = self.login_lib.hexToBytes(h_hex)
session = database.getSessionInts(username, base64.b64encode(h))
if (session is None):
return "Session error"
login_data = database.getLoginDataFromUser(username)
sk, m1, m2 = self.login_lib.generate_sk(
username, base64.b64decode(session['a']),
base64.b64decode(session['b']), base64.b64decode(session['b2']),
base64.b64decode(login_data[0]), base64.b64decode(login_data[1]))
mv = self.login_lib.hexToBytes(mv_hex)
if (mv != m1):
raise TypeError("Invalid Password")
database.editSessionKey(username, base64.b64encode(h),
base64.b64encode(sk), deviceID)
return self.login_lib.bytesToHex(m2)
def validate_user_session_encrypted(self, username, h_b64, mv_b64,
deviceID):
if (not database.userExists(username)):
raise TypeError("Username does not exist")
session = database.getSessionInts(username, h_b64)
if (session is None):
return "Session error"
login_data = database.getLoginDataFromUser(username)
sk, m1, m2 = self.login_lib.generate_sk(
username, base64.b64decode(session['a']),
base64.b64decode(session['b']), base64.b64decode(session['b2']),
base64.b64decode(login_data[0]), base64.b64decode(login_data[1]))
mv = self.crypto_lib.rsa_decrypt(mv_hex)
if (mv != m1):
raise TypeError("Invalid Password")
database.editSessionKey(username, base64.b64encode(h),
base64.b64encode(sk), deviceID)
return base64.b64encode(m2)
def serveFile(path):
path = path.replace('\\', '', path.count('\\'))
path = path.replace('%20', ' ', path.count('%20'))
#path = path.replace('/', '\\/', path.count('/'))
print(path)
if path is not None:
if userExists(path):
locale = getLocale(path)
if locale is not None:
fileT = Path('files/' + locale)
if fileT.is_file():
return send_file('files/' + locale,
attachment_filename=locale)
else:
fileT = Path('files/' + path)
if fileT.is_file():
return send_file('files/' + path, attachment_filename=path)
return abort(404)
def get_user_salt(self, username):
if (not database.userExists(username)):
raise TypeError("Username does not exist")
login_data = database.getLoginDataFromUser(username)
return self.login_lib.bytesToHex(base64.b64decode(login_data[0]))
def get_user_salt_b64(self, username):
if (not database.userExists(username)):
raise TypeError("Username does not exist")
login_data = database.getLoginDataFromUser(username)
return login_data[0]
#import database.py
from database import userExists, deleteUser, insertUser, getMainPage
print('userExists("adducin")=' + str(userExists('adducin')))
print('userExists("test2")=' + str(userExists('test2')))
print('trying to delete user "test2"')
deleteUser('test2')
print('userExists("test2")=' + str(userExists('test2')))
print('trying to insert user "test2"')
insertUser('test2', 'test2Pass', 'Test', '2', 'Test User 2 Desc',
'Hello World.pdf')
print('userExists("test2")=' + str(userExists('test2')))
print('Database contents:')
getMainPage()
