def login(page=None):
print("2")
resp1 = redirect(url_for('startpage'),
code=302) # Side for når en er innlogget
messages_1 = request.args.get(
'error'
) # Henter argumentet error fra URL som kommer med forespørselen fra nettleseren til brukeren.
messages_2 = request.args.get(
'v_mail'
) # Henter argumentet error fra URL som kommer med forespørselen fra nettleseren til brukeren.
messages_3 = request.args.get(
'timeout'
) # Henter argumentet error fra URL som kommer med forespørselen fra nettleseren til brukeren.
if 'x-forwarded-for' in request.headers:
ip = request.headers.get('x-forwarded-for')
else:
ip = request.remote_addr
client_listing = Blacklist.query.filter_by(ip=ip).first()
# Side for når en ikke er innlogget
if client_listing.blocked_login_until is not None and datetime.now(
) <= datetime.strptime(client_listing.blocked_login_until,
"%Y-%m-%d %H:%M:%S.%f"):
resp2 = make_response(
render_template("pages/login.html",
date=datetime.now(),
error=messages_1,
v_mail=messages_2,
timeout=messages_3,
denied=True,
deactivate_btn=True))
elif client_listing.blocked_login_until is not None:
client_listing.blocked_login_until = None
db.session.commit()
resp2 = make_response(
render_template("pages/login.html",
date=datetime.now(),
error=messages_1,
v_mail=messages_2,
timeout=messages_3,
login=True,
denied=False,
deactivate_btn=False))
else:
resp2 = make_response(
render_template("pages/login.html",
date=datetime.now(),
error=messages_1,
v_mail=messages_2,
timeout=messages_3,
denied=False,
deactivate_btn=False))
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def din_side():
print("13")
session_cookie = get_valid_cookie()
if session_cookie is not None:
cookie = Cookies.query.filter_by(session_cookie=session_cookie).first()
user = User.query.filter_by(user_id=cookie.user_id).first()
resp1 = make_response(
render_template(
"pages/din_side.html",
fname=user.fname,
mname=user.mname,
lname=user.lname,
email=user.email,
id=user.user_id,
phone_num=user.phone_num,
dob=user.dob,
city=user.city,
postcode=user.postcode,
address=user.address)) # Ønsket side for når vi er innlogget
else:
resp1 = make_response(
) # Tom respons, denne skal ikke trigge uansett siden brukeren ikke er logget inn. Ønsket side for når vi er innlogget
resp2 = redirect(url_for('index'),
code=302) # Side for når en ikke er innlogget
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def edit():
print("14")
# Henter argumenteer fra URL som kommer med forespørselen fra nettleseren til brukeren.
fname_error = request.args.get('fname')
mname_error = request.args.get('mname')
lname_error = request.args.get('lname')
phone_num_error = request.args.get('phone_num')
dob_error = request.args.get('dob')
city_error = request.args.get('city')
postcode_error = request.args.get('postcode')
address_error = request.args.get('address')
pswd_error = request.args.get('pswd')
new_pswd_error = request.args.get('new_pswd')
auth_error = request.args.get('auth')
session_cookie = get_valid_cookie()
if session_cookie is not None:
cookie = Cookies.query.filter_by(session_cookie=session_cookie).first()
user = User.query.filter_by(user_id=cookie.user_id).first()
resp1 = make_response(
render_template(
"pages/edit.html",
fname=user.fname,
mname=user.mname,
lname=user.lname,
email=user.email,
id=user.user_id,
phone_num=user.phone_num,
dob=user.dob,
city=user.city,
postcode=user.postcode,
address=user.address,
fname_error=fname_error,
mname_error=mname_error,
lname_error=lname_error,
phone_num_error=phone_num_error,
dob_error=dob_error,
city_error=city_error,
postcode_error=postcode_error,
address_error=address_error,
pswd_error=pswd_error,
new_pswd_error=new_pswd_error,
auth_error=auth_error)) # Ønsket side for når vi er innlogget
else:
resp1 = make_response(
) # Tom respons, denne skal ikke trigge uansett siden brukeren ikke er logget inn. Ønsket side for når vi er innlogget
resp2 = redirect(url_for('index'),
code=302) # Side for når en ikke er innlogget
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def index():
print("1")
resp1 = redirect(url_for('startpage'),
code=302) # Last inn denne hvis vi er innlogget
resp2 = app.send_static_file(
"index.html") # Last inn denne hvis vi ikke er innlogget
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def password_reset_request(style=None):
sitekey = os.environ.get("PUBLIC_SITE_KEY")
captcha_error = request.args.get('captcha_error')
resp1 = redirect(url_for('startpage'),
code=302) # Side for når en er innlogget
resp2 = make_response(
render_template("pages/password_reset_request.html",
captcha_error=captcha_error,
sitekey=sitekey)) # Side for når en ikke er innlogget
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def transaction_overview(page=None):
print("25")
resp1 = redirect(url_for('startpage'),
code=302) # Side for når en er innlogget
resp2 = redirect(url_for('index'),
code=302) # Side for når en ikke er innlogget
# Les ut variabler
account_number_hash = request.args.get('cnr')
session_cookie = get_valid_cookie()
if session_cookie is not None and contain_allowed_symbols(
account_number_hash,
whitelist=string.ascii_letters + string.digits +
string.punctuation + ' '):
cookie = Cookies.query.filter_by(session_cookie=session_cookie).first()
user = User.query.filter_by(user_id=cookie.user_id).first()
accounts = Account.query.filter_by(user_id=cookie.user_id).all()
match = False
for account in accounts:
actuall_hash = generate_password_hash(account.account_number,
'').decode('utf-8').replace(
'+', ' ')
if account_number_hash == actuall_hash:
match = True
break
# Sjekker om dette er brukeren sin konto
if account is not None and user is not None and account.user_id == user.user_id and match:
transactions = Transaction.query.filter_by(
to_acc=account.account_number).all(
) + Transaction.query.filter_by(
from_acc=account.account_number).all()
transfer_time = []
From = []
To = []
Msg = []
Inn = []
Out = []
insertion_sort_transactions(
transactions) # Sorterer transaksjonene, synkende rekkefølge
for transaction in transactions:
transfer_time.append(
str(
datetime.strptime(transaction.transfer_time,
"%Y-%m-%d %H:%M:%S.%f").strftime(
"%Y-%m-%d, %H:%M:%S")))
Msg.append(transaction.message)
From.append(transaction.from_acc)
To.append(transaction.to_acc)
if transaction.to_acc == account.account_number:
Inn.append(transaction.amount)
Out.append("")
if transaction.from_acc == account.account_number:
Inn.append("")
Out.append(transaction.amount)
resp1 = make_response(
render_template("pages/transaction_view.html",
len=len(transactions),
transfer_time=transfer_time,
From=From,
To=To,
Msg=Msg,
Inn=Inn,
Out=Out,
account=account.account_number,
name=account.account_name))
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404
def registration():
print("4")
resp1 = redirect(url_for('startpage'), code=302)
# Henter argumenteer fra URL som kommer med forespørselen fra nettleseren til brukeren.
fname = request.args.get('fname')
mname = request.args.get('mname')
lname = request.args.get('lname')
email = request.args.get('email')
uid = request.args.get('id')
phone_num = request.args.get('phone_num')
dob = request.args.get('dob')
city = request.args.get('city')
postcode = request.args.get('postcode')
address = request.args.get('address')
fname_error = request.args.get('fname_error')
mname_error = request.args.get('mname_error')
lname_error = request.args.get('lname_error')
email_error = request.args.get('email_error')
id_error = request.args.get('id_error')
phone_num_error = request.args.get('phone_num_error')
dob_error = request.args.get('dob_error')
city_error = request.args.get('city_error')
postcode_error = request.args.get('postcode_error')
address_error = request.args.get('address_error')
captcha_error = request.args.get('captcha_error')
errors = [
fname_error, mname_error, lname_error, email_error, id_error,
phone_num_error, dob_error, city_error, postcode_error, address_error
]
sitekey = os.environ.get("PUBLIC_SITE_KEY")
# Make_response, En alternativ måte å sende en side til brukeren, måtte gjøre det slik for å sette headers
# trenger det ikke nå lenger siden header greiene er flyttet på, men er et greit eksempel
resp2 = make_response(
render_template("pages/registration.html",
fname=fname,
mname=mname,
lname=lname,
email=email,
id=uid,
phone_num=phone_num,
dob=dob,
city=city,
postcode=postcode,
address=address,
fname_error=fname_error,
mname_error=mname_error,
lname_error=lname_error,
email_error=email_error,
id_error=id_error,
phone_num_error=phone_num_error,
dob_error=dob_error,
city_error=city_error,
postcode_error=postcode_error,
address_error=address_error,
captcha_error=captcha_error,
sitekey=sitekey))
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet, i tilfellet noen prøver å skrive inn addresser til sider som ikke finnes
abort(404) # Returner feilmelding 404
def startpage():
print("3")
resp1 = make_response() # Ønsket side for når vi er innlogget
resp2 = redirect(url_for('index'),
code=302) # Side for når en ikke er innlogget
session_cookie = get_valid_cookie()
if session_cookie is not None:
cookie = Cookies.query.filter_by(session_cookie=session_cookie).first()
user = User.query.filter_by(user_id=cookie.user_id).first()
accounts = Account.query.filter_by(user_id=user.user_id).all()
ac_name = []
ac_nr = []
ac_balance = []
btn = []
transactions = set() # Bruker set for å fjerne duplikater
for account in accounts:
ac_name.append(account.account_name)
ac_nr.append(account.account_number)
btn.append(
generate_password_hash(account.account_number,
'').decode('utf-8'))
ac_balance.append(account.balance)
for transaction in Transaction.query.filter_by(
to_acc=account.account_number).all():
transactions.add(transaction)
for transaction in Transaction.query.filter_by(
from_acc=account.account_number).all():
transactions.add(transaction)
transactions_list = []
for transaction in transactions:
transactions_list.append(transaction)
insertion_sort_transactions(
transactions_list) # Sorterer transaksjonene, synkende rekkefølge
transfer_time = []
From = []
To = []
Msg = []
Inn = []
Out = []
for transaction in transactions_list:
for account in accounts:
if transaction.to_acc == account.account_number:
transfer_time.append(
str(
datetime.strptime(transaction.transfer_time,
"%Y-%m-%d %H:%M:%S.%f").strftime(
"%Y-%m-%d, %H:%M:%S")))
Msg.append(transaction.message)
From.append(transaction.from_acc)
To.append(transaction.to_acc)
Inn.append(transaction.amount)
Out.append("")
if transaction.from_acc == account.account_number:
Inn.append("")
Out.append(transaction.amount)
transfer_time.append(
str(
datetime.strptime(transaction.transfer_time,
"%Y-%m-%d %H:%M:%S.%f").strftime(
"%Y-%m-%d, %H:%M:%S")))
Msg.append(transaction.message)
From.append(transaction.from_acc)
To.append(transaction.to_acc)
account_num_error = request.args.get('account_num_error')
account_balance_error = request.args.get('account_balance_error')
amount_error = request.args.get('amount_error')
kid_error = request.args.get('kid_error')
auth_error = request.args.get('auth_error')
resp1 = make_response(
render_template("pages/startside.html",
len=len(transactions_list),
transfer_time=transfer_time,
From=From,
To=To,
Msg=Msg,
Inn=Inn,
Out=Out,
account=accounts[0].account_number,
ac_name=ac_name,
ac_nr=ac_nr,
ac_balance=ac_balance,
account_num_error=account_num_error,
account_balance_error=account_balance_error,
amount_error=amount_error,
kid_error=kid_error,
auth_error=auth_error,
btn=btn))
try:
return signed_in(resp1, resp2)
except jinja2.exceptions.TemplateNotFound: # Hvis siden/html filen ikke blir funnet
abort(404) # Returner feilmelding 404