def setadmin():
"""Служебный метод"""
"""Запрос и изменение root пароля, создание нового
root пользователя и его удаление"""
"""После создания имени пользователя, его изменить нельзя,
только если удалить и создать нового root
пользователя с новым именем"""
if app.config['USER_PERMISSION'] == True:
if request.method == 'GET':
with UseDatabase(DB_CONF) as db:
try:
n = db.getroot(USE_DB, TAB_ROOT)
except (KeyError, TypeError):
n = {'error': 'the record does not exist'}
if not n:
n = {'error': 'the record does not exist'}
elif request.method == 'POST':
new_json = {}
if not request.json:
err = {'request': 'not json format'}
return jsonify({'error': err})
elif not 'login' in request.json or not request.json['login']:
err = {'request': 'login field is empty'}
return jsonify({'error': err})
elif not 'passw' in request.json or not request.json['passw']:
err = {'request': 'password field is empty'}
return jsonify({'error': err})
new_json['id'] = str(request.json['login'].lower())
new_json['login'] = new_json['id']
new_json['passw'] = setpasswd(new_json['login'],
request.json['passw'])
with UseDatabase(DB_CONF) as db:
try:
n = db.getroot(USE_DB, TAB)['login']
id_name = n
except (KeyError, TypeError):
n = None
if not n:
n = db.insert(USE_DB, TAB, new_json)
elif n:
n = db.updetask(USE_DB, TAB, id_name, new_json)
elif request.method == 'DELETE':
with UseDatabase(DB_CONF) as db:
try:
n = db.getroot(USE_DB, TAB)['login']
id_name = n
except (KeyError, TypeError):
n = None
if n:
n = db.delltask(USE_DB, TAB, id_name)
else:
n = {'error': 'the record does not exist'}
else:
n = {'error method': 'method is not supported'}
return jsonify({'info': n})
def get_user(task_id):
"""Метод доступный для конкретного пользователя по login и passw
или для пользователя root"""
"""Запрос данных о пользователе, редактирование данных и удаление"""
if app.config['USER_PERMISSION'] == str(
task_id).lower() or app.config['USER_PERMISSION'] == True:
if request.method == 'GET': # Запрос данных о пользователе
with UseDatabase(DB_CONF) as db:
n = db.gettask(USE_DB, TAB, str(task_id))
elif request.method == 'POST': # Редактирование данных пользователя
new_json = {}
with UseDatabase(DB_CONF) as db:
try:
data = db.gettask(USE_DB, TAB, str(task_id))
except (KeyError, TypeError):
data = None
if data:
new_json['passw'] = setpasswd(
data['login'], request.json['passw']
) if 'passw' in request.json else data['passw']
new_json['phone'] = request.json[
'phone'] if 'phone' in request.json else data['phone']
new_json['email'] = request.json[
'email'] if 'email' in request.json else data['email']
new_json['reg_date'] = data['reg_date']
new_json['ch_date'] = datetime.now().strftime(
"%Y-%m-%d %X")
new_json['name'] = request.json[
'name'] if 'name' in request.json else data['name']
new_json['gender'] = request.json[
'gender'] if 'gender' in request.json else data[
'gender']
n = db.updetask(USE_DB, TAB, data['login'], new_json)
else:
n = {'error': 'the record does not exist'}
elif request.method == 'DELETE': # Удаление данных о пользователе
with UseDatabase(DB_CONF) as db:
try:
n = db.gettask(USE_DB, TAB, str(task_id))['login']
except (KeyError, TypeError):
n = None
id_name = n
if n:
n = db.delltask(USE_DB, TAB, id_name)
else:
n = {'error': 'the record does not exist'}
else:
n = {'error method': 'method is not supported'}
else:
n = {
'for user ' + app.config['USER_PERMISSION']:
'the request ' + str(task_id).lower() + ' is not allowed'
}
return jsonify({'info': n})
def verify_password(username, password):
"""Проверка пароля и логина"""
with UseDatabase(DB_CONF) as db:
try:
root = db.getroot(USE_DB, TAB_ROOT)['login']
root_passw = db.getroot(USE_DB, TAB_ROOT)['passw']
except TypeError:
root, root_passw = None, None
rt = root
if not rt:
root = app.config['ROOT_USER']['login']
root_passw = app.config['ROOT_USER']['passw']
if username.lower() == root:
if root_passw == setpasswd(username.lower(), password):
app.config['USER_PERMISSION'] = True
# При совпедении passwd, возвращаем хеш passwd root
passw = db.getroot(USE_DB,
TAB_ROOT)['passw'] if rt else root_passw
return passw
else:
try:
usr = db.gettask(USE_DB, TAB, str(username.lower()))['login']
passw = db.gettask(USE_DB, TAB, str(username.lower()))['passw']
except TypeError:
usr = None
if usr == username.lower():
if passw == setpasswd(username.lower(), password):
app.config['USER_PERMISSION'] = username.lower()
return db.gettask(USE_DB, TAB,
str(username.lower()))['passw']
return None
def settab():
"""Служебный метод"""
"""Запрос таблиц, создание и удаление"""
if app.config['USER_PERMISSION'] == True:
name = list(app.config['DB_TAB'].values())
t = ''
with UseDatabase(DB_CONF) as db:
if request.method == 'GET':
"""Запрос таблиц"""
t = db.all_table(USE_DB)
elif request.method == 'POST':
"""Создание таблицы"""
for n in range(len(name)):
message = db.create_tab(USE_DB, name[n])
if n != len(name) - 1:
t = t + '{},'.format(message)
else:
t = t + '{}'.format(message)
elif request.method == 'DELETE':
"""Удалени таблицы"""
for n in range(len(name)):
message = db.del_tab(USE_DB, name[n])
if n != len(name) - 1:
t = t + '{},'.format(message)
else:
t = t + '{}'.format(message)
else:
t = {'set table': 'not allowed'}
return jsonify({'info': t})
def getuserid(self, use_db, use_tab, id_name):
with UseDatabase(self.config) as db:
try:
d = db.gettask(use_db, use_tab, id_name)
out = d if d else USER1
return out
except:
return False
def setdb():
"""Служебный метод"""
"""Запрос баз данных, создание и удаление"""
if app.config['USER_PERMISSION'] == True:
with UseDatabase(DB_CONF) as db:
if request.method == 'GET':
d = db.all_db()
elif request.method == 'POST':
d = db.create_db(USE_DB)
elif request.method == 'DELETE':
d = db.del_db(USE_DB)
else:
d = {'set database': 'not allowed'}
return jsonify({'info': d})
def all_users():
"""Служебный метод"""
"""Запрос содержания всех таблиц DB"""
if app.config['USER_PERMISSION'] == True:
if request.method == 'GET':
tab = app.config['DB_TAB']['tab_1']
with UseDatabase(DB_CONF) as db:
n = db.gettasks(USE_DB, TAB)
else:
n = {'error method': 'method is not supported'}
else:
n = {
'for user ' + app.config['USER_PERMISSION']:
'this request is not allowed'
}
return jsonify({'info': n})
def new_user():
"""Метод доступный для всех"""
"""Создание нового пользователя"""
id_name = 'id'
new_json = {}
if request.method == 'GET':
return jsonify(app.config['HELP'])
elif request.method == 'POST':
if not request.json:
err = {'request': 'not json format'}
return jsonify({'error': err})
elif not 'passw' in request.json or not request.json['passw']:
err = {'request': 'password field is empty'}
return jsonify({'error': err})
elif not 'login' in request.json or not request.json['login']:
err = {'request': 'login field is empty'}
return jsonify({'error': err})
elif not 'phone' in request.json or not request.json['phone']:
err = {'request': 'phone number field is empty'}
return jsonify({'error': err})
elif not 'email' in request.json or not request.json['email']:
err = {'request': 'email field is empty'}
return jsonify({'error': err})
else:
new_json['id'] = str(request.json['login'].lower())
new_json['login'] = new_json['id']
new_json['passw'] = setpasswd(new_json['login'],
request.json['passw'])
new_json['phone'] = request.json['phone']
new_json['email'] = request.json['email']
new_json['reg_date'] = datetime.now().strftime("%Y-%m-%d %X")
new_json['ch_date'] = new_json['reg_date']
new_json['name'] = request.json[
'name'] if 'name' in request.json else CONTENT['name']
new_json['gender'] = request.json[
'gender'] if 'gender' in request.json else CONTENT['gender']
with UseDatabase(DB_CONF) as db:
if db.countid(USE_DB, TAB, id_name, new_json['id']) == 0:
# Если записи нет, добавляем новую
n = db.insert(USE_DB, TAB, new_json)
else:
n = {'user ' + new_json['login']: '******'}
return jsonify({'info': n})
def passw_user(task_id):
"""Метод доступный для любого пользователя для
восстановления пароля к учетной записи"""
"""Редактирование пароля по 3 параметрам: login, email, phone"""
if request.method == 'POST':
if not request.json:
err = {'request': 'not json format'}
return jsonify({'error': err})
elif not 'passw' in request.json or not request.json['passw']:
err = {'request': 'password field is empty'}
return jsonify({'error': err})
elif not 'phone' in request.json or not request.json['phone']:
err = {'request': 'phone number field is empty'}
return jsonify({'error': err})
elif not 'email' in request.json or not request.json['email']:
err = {'request': 'email field is empty'}
return jsonify({'error': err})
else:
new_json = {}
with UseDatabase(DB_CONF) as db:
try:
data = db.gettask(USE_DB, TAB, str(task_id))
except (KeyError, TypeError):
data = None
if data and data['phone'] == request.json['phone'] and data[
'email'] == request.json['email']:
new_json['passw'] = setpasswd(str(task_id),
request.json['passw'])
new_json['phone'] = request.json['phone']
new_json['email'] = request.json['email']
new_json['ch_date'] = datetime.now().strftime(
"%Y-%m-%d %X")
n = db.updetask(USE_DB, TAB, str(task_id), new_json)
else:
n = {
'error':
'no such user or email and phone data does not match'
}
else:
n = {'error method': 'method is not supported'}
return jsonify({'info': n})
def getrootuser(self, use_db, use_tab, req):
with UseDatabase(self.config) as db:
try:
return db.getroot(use_db, use_tab)[req]
except:
return False
def getall(self, use_db, use_tab):
with UseDatabase(self.config) as db:
try:
return db.gettasks(use_db, use_tab)
except:
return False
def new_record(self, use_db, use_tab, json):
with UseDatabase(self.config) as db:
try:
return db.insert(use_db, use_tab, json)
except:
return False
def tab_delete(self, use_db, use_tab):
with UseDatabase(self.config) as db:
try:
return db.del_tab(use_db, use_tab)
except:
return False
def tab_all(self, use_db):
with UseDatabase(self.config) as db:
try:
return db.all_table(use_db)
except:
return False
def tab_creat(self, use_db, use_tab):
with UseDatabase(self.config) as db:
try:
return db.create_tab(use_db, use_tab)
except:
return False
def presence_id(self, use_db, name_t, id_mane, req):
with UseDatabase(self.config) as db:
try:
return db.countid(use_db, name_t, id_mane, req)
except:
return False
def getonetask(self, use_db, use_tab, id_name):
with UseDatabase(self.config) as db:
try:
return db.gettask(use_db, use_tab, id_name)
except:
return False
def updateonetask(self, use_db, use_tab, id_name, json):
with UseDatabase(self.config) as db:
try:
return db.updetask(use_db, use_tab, id_name, json)
except:
return False