기타

v' + r_ver + '

', method=['POST', 'GET']) def manager(num = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(num == 1): conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '관리자 메뉴', logo = set_data['name'], data = '

사용자 체크

사용자 차단

관리자 권한 주기

많은 문서 삭제

소유자

모든 역링크 재 생성

관리 그룹 생성

기타

이 메뉴에 없는 기능은 해당 문서의 역사나 토론에서 바로 사용 가능함

')) elif(num == 2): if(request.method == 'POST'): conn.close() return(redirect('/acl/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = 'ACL 이동', logo = set_data['name'], data = '')) elif(num == 3): if(request.method == 'POST'): conn.close() return(redirect('/check/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '체크 이동', logo = set_data['name'], data = '')) elif(num == 4): if(request.method == 'POST'): conn.close() return(redirect('/ban/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '차단 이동', logo = set_data['name'], data = '')) elif(num == 5): if(request.method == 'POST'): conn.close() return(redirect('/admin/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 이동', logo = set_data['name'], data = '') ) elif(num == 6): if(request.method == 'POST'): conn.close() return(redirect('/record/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기록 이동', logo = set_data['name'], data = '') ) elif(num == 7): if(request.method == 'POST'): conn.close() return(redirect('/user/' + url_pas(request.forms.name) + '/topic')) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '토론 기록 이동', logo = set_data['name'], data = '') ) elif(num == 8): if(request.method == 'POST'): conn.close() return(redirect('/adminplus/' + url_pas(request.forms.name))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '그룹 생성 이동', logo = set_data['name'], data = '') ) else: conn.close() return(redirect('/')) @route('/titleindex') def title_index(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) i = [0, 0, 0, 0, 0, 0] data = '

' curs.execute("select title from data order by title asc") title_list = curs.fetchall() if(title_list): for list_data in title_list: data += '

' + str(i[0] + 1) + '. ' + list_data['title'] + '

' if(re.search('^분류:', list_data['title'])): i[1] += 1 elif(re.search('^사용자:', list_data['title'])): i[2] += 1 elif(re.search('^틀:', list_data['title'])): i[3] += 1 elif(re.search('^파일:', list_data['title'])): i[4] += 1 else: i[5] += 1 i[0] += 1 else: data += '

' data += '

이 위키에는 총 ' + str(i[0]) + '개의 문서가 있습니다.

틀 문서는 총 ' + str(i[3]) + '개의 문서가 있습니다.

분류 문서는 총 ' + str(i[1]) + '개의 문서가 있습니다.

사용자 문서는 총 ' + str(i[2]) + '개의 문서가 있습니다.

파일 문서는 총 ' + str(i[4]) + '개의 문서가 있습니다.

나머지 문서는 총 ' + str(i[5]) + '개의 문서가 있습니다.

' else: data = 'None' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = data, title = '모든 문서')) @route('/topic//sub//b/') def topic_block(name = None, sub = None, num = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(admin_check(3) == 1): curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") block = curs.fetchall() if(block): if(block[0]['block'] == 'O'): curs.execute("update topic set block = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") else: curs.execute("update topic set block = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") conn.commit() rd_plus(name, sub, get_time()) conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/error/3')) @route('/topic//sub//notice/') def topic_top(name = None, sub = None, num = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(admin_check(3) == 1): curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") topic_data = curs.fetchall() if(topic_data): curs.execute("select * from topic where id = '" + str(num) + "' and title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'") top_data = curs.fetchall() if(top_data): if(top_data[0]['top'] == 'O'): curs.execute("update topic set top = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") else: curs.execute("update topic set top = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'") conn.commit() rd_plus(name, sub, get_time()) conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/error/3')) @route('/topic//sub//stop') def topic_stop(name = None, sub = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(admin_check(3) == 1): ip = ip_check() curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1") topic_check = curs.fetchall() if(topic_check): time = get_time() curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''") stop = curs.fetchall() if(stop): curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 재 시작', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''") else: curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 정지', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', '')") conn.commit() rd_plus(name, sub, time) conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/error/3')) @route('/topic//sub//close') def topic_close(name = None, sub = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(admin_check(3) == 1): ip = ip_check() curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1") topic_check = curs.fetchall() if(topic_check): time = get_time() curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'") close = curs.fetchall() if(close): curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 다시 열기', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'") else: curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 닫음', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', 'O')") conn.commit() rd_plus(name, sub, time) conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/error/3')) @route('/topic//sub//agree') def topic_agree(name = None, sub = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(admin_check(3) == 1): ip = ip_check() curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1") topic_check = curs.fetchall() if(topic_check): time = get_time() curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'") agree = curs.fetchall() if(agree): curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 결렬', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("delete from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'") else: curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 완료', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')") curs.execute("insert into agreedis (title, sub) value ('" + db_pas(name) + "', '" + db_pas(sub) + "')") conn.commit() rd_plus(name, sub, time) conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: conn.close() return(redirect('/error/3')) @route('/topic//sub/', method=['POST', 'GET']) def topic(name = None, sub = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) ip = ip_check() ban = topic_check(ip, name, sub) admin = admin_check(3) if(request.method == 'POST'): curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1") rows = curs.fetchall() if(rows): num = int(rows[0]['id']) + 1 else: num = 1 if(ban == 1 and not admin == 1): conn.close() return(redirect('/ban')) else: today = get_time() rd_plus(name, sub, today) aa = re.sub("\[\[(분류:(?:(?:(?!\]\]).)*))\]\]", "[br]", request.forms.content) aa = savemark(aa) curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + str(num) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '" + db_pas(aa) + "', '" + today + "', '" + ip + "', '', '')") conn.commit() conn.close() return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub))) else: style = '' curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'") close = curs.fetchall() curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''") stop = curs.fetchall() if(admin == 1): div = '

' if(close): div += '(토론 열기) ' else: div += '(토론 닫기) ' if(stop): div += '(토론 재개) ' else: div += '(토론 정지) ' curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'") agree = curs.fetchall() if(agree): div += '(합의 취소)' else: div += '(합의 완료)' div += '

' else: div = '

' if(stop or close): if(not admin == 1): style = 'display:none;' curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 asc") toda = curs.fetchall() curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and top = 'O' order by id + 0 asc") top = curs.fetchall() if(top): for dain in top: top_data = namumark('', dain['data']) top_data = re.sub("(?P#(?:[0-9]*))", '\g', top_data) ip = ip_pas(dain['ip'], 1) div += '

#' + dain['id'] + ' ' + ip + ' ' + dain['date'] + '

' + top_data + '

' i = 0 for dain in toda: if(i == 0): start = dain['ip'] indata = namumark('', dain['data']) indata = re.sub("(?P#(?:[0-9]*))", '\g', indata) if(dain['block'] == 'O'): indata = '
' block = 'id="block"' else: block = '' if(admin == 1): if(dain['block'] == 'O'): isblock = ' (해제)' else: isblock = ' (가림)' curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + db_pas(str(i + 1)) + "' and top = 'O'") row = curs.fetchall() if(row): isblock = isblock + ' (해제)' else: isblock = isblock + ' (공지)' curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'") ban_it = curs.fetchall() if(ban_it): ban = ' (해제)' + isblock else: ban = ' (차단)' + isblock else: curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'") ban_it = curs.fetchall() if(ban_it): ban = ' (X)' else: ban = '' chad = '' curs.execute('select acl from user where id = "' + db_pas(dain['ip']) + '"') adch = curs.fetchall() if(adch): if(not adch[0]['acl'] == 'user'): chad = ' ★' ip = ip_pas(dain['ip'], 1) if(dain['top'] == '1'): color = 'blue' elif(dain['ip'] == start): color = 'green' else: color = '' div += '

#' + str(i + 1) + ' ' + ip + chad + ban + ' ' + dain['date'] + '

' + indata + '

' i += 1 conn.close() return(template('vstopic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), suburl = url_pas(sub), toron = sub, logo = set_data['name'], rows = div, ban = ban, style = style, sub = '토론')) @route('/topic//close') def close_topic_list(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) div = '

' i = 0 curs.execute("select * from stop where title = '" + db_pas(name) + "' and close = 'O' order by sub asc") rows = curs.fetchall() for data in rows: curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'") row = curs.fetchall() if(row): indata = namumark(name, row[0]['data']) if(row[0]['block'] == 'O'): indata = '
' block = 'id="block"' else: block = '' ip = ip_pas(row[0]['ip'], 1) div += '

' + str((i + 1)) + '. ' + data['sub'] + '

#1 ' + ip + ' ' + row[0]['date'] + '

' + indata + '

' i += 1 else: div += '

' i = 0 curs.execute("select * from agreedis where title = '" + db_pas(name) + "' order by sub asc") agree_list = curs.fetchall() for data in agree_list: curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'") topic_data = curs.fetchall() if(topic_data): indata = namumark(name, topic_data[0]['data']) if(topic_data[0]['block'] == 'O'): indata = '
' block = 'id="block"' else: block = '' ip = ip_pas(topic_data[0]['ip'], 1) div += '

' + str(i + 1) + '. ' + data['sub'] + '

#1 ' + ip + ' ' + topic_data[0]['date'] + '

' + indata + '

' i += 1 else: div += '

' j = 1 curs.execute("select * from rd where title = '" + db_pas(name) + "' order by date asc") rows = curs.fetchall() for data in rows: curs.execute("select * from topic where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1' order by sub asc") aa = curs.fetchall() indata = namumark(name, aa[0]['data']) if(aa[0]['block'] == 'O'): indata = '
' block = 'id="block"' else: block = '' ip = ip_pas(aa[0]['ip'], 1) curs.execute("select * from stop where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and close = 'O'") row = curs.fetchall() if(not row): div += '

' + str(j) + '. ' + data['sub'] + '

#1 ' + ip + ' ' + aa[0]['date'] + '

' + indata + '

' j += 1 else: div += '

' conn.close() return(template('topic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], plus = div, list = 1, sub = '토론 목록')) @route('/login', method=['POST', 'GET']) def login(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) session = request.environ.get('beaker.session') ip = ip_check() ban = ban_check(ip) if(request.method == 'POST'): if(ban == 1): conn.close() return(redirect('/ban')) else: curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'") user = curs.fetchall() if(user): if(session.get('Now') == True): conn.close() return(redirect('/error/11')) elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))): session['Now'] = True session['DREAMER'] = request.forms.id curs.execute("select * from custom where user = '" + db_pas(request.forms.id) + "'") css_data = curs.fetchall() if(css_data): session['Daydream'] = css_data[0]['css'] else: session['Daydream'] = '' curs.execute("insert into login (user, ip, today) value ('" + db_pas(request.forms.id) + "', '" + db_pas(ip) + "', '" + db_pas(get_time()) + "')") conn.commit() conn.close() return(redirect('/user')) else: conn.close() return(redirect('/error/13')) else: conn.close() return(redirect('/error/12')) else: if(ban == 1): conn.close() return(redirect('/ban')) else: if(session.get('Now') == True): conn.close() return(redirect('/error/11')) else: conn.close() return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인', enter = '로그인', logo = set_data['name'])) @route('/change', method=['POST', 'GET']) def change_password(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) ip = ip_check() ban = ban_check(ip) if(request.method == 'POST'): if(request.forms.pw2 == request.forms.pw3): if(ban == 1): conn.close() return(redirect('/ban')) else: curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'") user = curs.fetchall() if(user): if(not re.search('(\.|:)', ip)): conn.close() return(redirect('/logout')) elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))): hashed = bcrypt.hashpw(bytes(request.forms.pw2, 'utf-8'), bcrypt.gensalt()) curs.execute("update user set pw = '" + db_pas(hashed.decode()) + "' where id = '" + db_pas(request.forms.id) + "'") conn.commit() conn.close() return(redirect('/login')) else: conn.close() return(redirect('/error/10')) else: conn.close() return(redirect('/error/9')) else: conn.close() return(redirect('/error/20')) else: if(ban == 1): conn.close() return(redirect('/ban')) else: if(not re.search('(\.|:)', ip)): conn.close() return(redirect('/logout')) else: conn.close() return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '비밀번호 변경', enter = '변경', logo = set_data['name'])) @route('/check/') def user_check(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select * from user where id = '" + db_pas(name) + "'") user = curs.fetchall() if(user and not user[0]['acl'] == 'user'): conn.close() return(redirect('/error/4')) else: if(admin_check(4) == 1): m = re.search('^(?:[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}?)$', name) if(m): curs.execute("select * from login where ip = '" + db_pas(name) + "' order by today desc") row = curs.fetchall() if(row): c = '

' for data in row: c += '' else: c += '

이름	아이피	언제
' + data['user'] + '	' + data['ip'] + '	' + data['today'] + '

' else: c = 'None' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '다중 검사', logo = set_data['name'], data = c)) else: curs.execute("select * from login where user = '" + db_pas(name) + "' order by today desc") row = curs.fetchall() if(row): c = '

' for data in row: c += '' else: c += '

이름	아이피	언제
' + data['user'] + '	' + data['ip'] + '	' + data['today'] + '

' else: c = 'None' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '다중 검사', logo = set_data['name'], data = c)) else: conn.close() return(redirect('/error/3')) @route('/register', method=['POST', 'GET']) def register(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) ip = ip_check() ban = ban_check(ip) if(request.method == 'POST'): if(request.forms.pw == request.forms.pw2): if(ban == 1): conn.close() return(redirect('/ban')) else: m = re.search('(?:[^A-Za-zㄱ-힣0-9 ])', request.forms.id) if(m): conn.close() return(redirect('/error/8')) else: if(len(request.forms.id) > 20): conn.close() return(redirect('/error/7')) else: curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'") rows = curs.fetchall() if(rows): conn.close() return(redirect('/error/6')) else: hashed = bcrypt.hashpw(bytes(request.forms.pw, 'utf-8'), bcrypt.gensalt()) curs.execute("select id from user limit 1") user_ex = curs.fetchall() if(not user_ex): curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'owner')") else: curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'user')") conn.commit() conn.close() return(redirect('/login')) else: conn.close() return(redirect('/error/20')) else: if(ban == 1): conn.close() return(redirect('/ban')) else: conn.close() return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '회원가입', enter = '회원가입', logo = set_data['name'])) @route('/logout') def logout(): session = request.environ.get('beaker.session') session['Now'] = False session.pop('DREAMER', None) return(redirect('/user')) @route('/ban/', method=['POST', 'GET']) def user_ban(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select * from user where id = '" + db_pas(name) + "'") user = curs.fetchall() if(user and not user[0]['acl'] == 'user'): conn.close() return(redirect('/error/4')) else: if(request.method == 'POST'): if(admin_check(1) == 1): ip = ip_check() if(not re.search("[0-9]{4}-[0-9]{2}-[0-9]{2}", request.forms.end)): end = '' else: end = request.forms.end curs.execute("select * from ban where block = '" + db_pas(name) + "'") row = curs.fetchall() if(row): rb_plus(name, '해제', get_time(), ip, '') curs.execute("delete from ban where block = '" + db_pas(name) + "'") else: b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name) if(b): rb_plus(name, end, get_time(), ip, request.forms.why) curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', 'O')") else: rb_plus(name, end, get_time(), ip, request.forms.why) curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', '')") conn.commit() conn.close() return(redirect('/ban/' + url_pas(name))) else: conn.close() return(redirect('/error/3')) else: if(admin_check(1) == 1): curs.execute("select * from ban where block = '" + db_pas(name) + "'") row = curs.fetchall() if(row): now = '차단 해제' else: b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name) if(b): now = '대역 차단' else: now = '차단' conn.close() return(template('ban', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], now = now, today = get_time(), sub = '차단')) else: conn.close() return(redirect('/error/3')) @route('/acl/', method=['POST', 'GET']) def acl(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(request.method == 'POST'): if(admin_check(5) == 1): curs.execute("select acl from data where title = '" + db_pas(name) + "'") row = curs.fetchall() if(row): if(request.forms.select == 'admin'): curs.execute("update data set acl = 'admin' where title = '" + db_pas(name) + "'") elif(request.forms.select == 'user'): curs.execute("update data set acl = 'user' where title = '" + db_pas(name) + "'") else: curs.execute("update data set acl = '' where title = '" + db_pas(name) + "'") conn.commit() conn.close() return(redirect('/w/' + url_pas(name)) ) else: conn.close() return(redirect('/error/3')) else: if(admin_check(5) == 1): curs.execute("select acl from data where title = '" + db_pas(name) + "'") row = curs.fetchall() if(row): if(row[0]['acl'] == 'admin'): now = '관리자만' elif(row[0]['acl'] == 'user'): now = '로그인 이상' else: now = '일반' conn.close() return(template('acl', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], now = '현재 ACL 상태는 ' + now, sub = 'ACL')) else: conn.close() return(redirect('/w/' + url_pas(name)) ) else: conn.close() return(redirect('/error/3')) @route('/admin/', method=['POST', 'GET']) def user_admin(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(request.method == 'POST'): if(admin_check(None) == 1): curs.execute("select * from user where id = '" + db_pas(name) + "'") user = curs.fetchall() if(user): if(not user[0]['acl'] == 'user'): curs.execute("update user set acl = 'user' where id = '" + db_pas(name) + "'") else: curs.execute("update user set acl = '" + db_pas(request.forms.select) + "' where id = '" + db_pas(name) + "'") conn.commit() conn.close() return(redirect('/')) else: conn.close() return(redirect('/error/5')) else: conn.close() return(redirect('/error/3')) else: if(admin_check(None) == 1): curs.execute("select * from user where id = '" + db_pas(name) + "'") user = curs.fetchall() if(user): if(not user[0]['acl'] == 'user'): now = '권한 해제' else: now = '권한 부여' div = '' curs.execute('select name from alist order by name asc') get_alist = curs.fetchall() if(get_alist): i = 0 name_rem = '' for data in get_alist: if(not name_rem == data['name']): name_rem = data['name'] div += '' conn.close() return(template('admin', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), datalist = div, logo = set_data['name'], now = now, sub = '권한 부여')) else: conn.close() return(redirect('/error/5')) else: conn.close() return(redirect('/error/3')) @route('/ban') def are_you_ban(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) ip = ip_check() if(ban_check(ip) == 1): curs.execute("select * from ban where block = '" + db_pas(ip) + "'") rows = curs.fetchall() if(rows): if(rows[0]['end']): end = rows[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why'] now = re.sub(':', '', get_time()) now = re.sub('\-', '', now) now = int(re.sub(' ', '', now)) day = re.sub('\-', '', rows[0]['end']) if(now >= int(day + '000000')): curs.execute("delete from ban where block = '" + db_pas(ip) + "'") conn.commit() end = '차단이 풀렸습니다. 다시 시도 해 보세요.' else: end = '영구 차단 상태 입니다. / 사유 : ' + rows[0]['why'] else: b = re.search("^([0-9](?:[0-9]?[0-9]?)\.[0-9](?:[0-9]?[0-9]?))", ip) if(b): results = b.groups() curs.execute("select * from ban where block = '" + db_pas(results[0]) + "' and band = 'O'") row = curs.fetchall() if(row): if(row[0]['end']): end = row[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why'] now = re.sub(':', '', get_time()) now = re.sub('\-', '', now) now = int(re.sub(' ', '', now)) day = re.sub('\-', '', row[0]['end']) if(now >= int(day + '000000')): curs.execute("delete from ban where block = '" + db_pas(results[0]) + "' and band = 'O'") conn.commit() end = '차단이 풀렸습니다. 다시 시도 해 보세요.' else: end = '영구 차단 상태 입니다. / 사유 : ' + row[0]['why'] else: end = '권한이 맞지 않는 상태 입니다.' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = end)) @route('/w//r//diff/') def diff_data(name = None, a = None, b = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select * from history where id = '" + db_pas(str(a)) + "' and title = '" + db_pas(name) + "'") a_raw_data = curs.fetchall() if(a_raw_data): curs.execute("select * from history where id = '" + db_pas(str(b)) + "' and title = '" + db_pas(name) + "'") b_raw_data = curs.fetchall() if(b_raw_data): a_data = re.sub('<', '<', a_raw_data[0]['data']) a_data = re.sub('>', '>', a_data) a_data = re.sub('"', '"', a_data) b_data = re.sub('<', '<', b_raw_data[0]['data']) b_data = re.sub('>', '>', b_data) b_data = re.sub('"', '"', b_data) diff_data = difflib.SequenceMatcher(None, a_data, b_data) result = diff(diff_data) result = '

' + result + '

' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], data = result, sub = '비교', page = url_pas(name))) else: conn.close() return(redirect('/history/' + url_pas(name))) else: conn.close() return(redirect('/history/' + url_pas(name))) @route('/down/') def down(name = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select title from data where title like '%" + db_pas(name) + "/%'") under = curs.fetchall() div = '' i = 0 for data in under: div += '

' + str(i + 1) + '. ' + data['title'] + '

' i += 1 conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], data = div, sub = '하위 문서', page = url_pas(name))) @route('/w/') @route('/w//from/') def read_view(name = None, redirect = None): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) data_none = False sub = None acl = '' div = '' i = 0 curs.execute("select sub from rd where title = '" + db_pas(name) + "' order by date asc") rows = curs.fetchall() while(True): try: curs.execute("select title from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(rows[i]['sub']) + "' and close = 'O'") row = curs.fetchall() if(not row): topic = "open" break i += 1 except: topic = "" break curs.execute("select title from data where title like '%" + db_pas(name) + "/%'") under = curs.fetchall() if(under): down = True else: down = False m = re.search("^(.*)\/(.*)$", name) if(m): uppage = m.groups()[0] else: uppage = False if(admin_check(5) == 1): admin_memu = 'ACL' else: admin_memu = '' if(re.search("^분류:", name)): curs.execute("select * from cat where title = '" + db_pas(name) + "' order by cat asc") rows = curs.fetchall() if(rows): div = '

분류

' i = 0 for data in rows: curs.execute("select * from data where title = '" + db_pas(data['cat']) + "'") row = curs.fetchall() if(row): aa = row[0]['data'] aa = namumark('', aa) bb = re.search('

분류:((?:(?!<\/div>).)*)<\/div>', aa) if(bb): cc = bb.groups() mm = re.search("^분류:(.*)", name) if(mm): ee = mm.groups() if(re.search("" + ee[0] + "<\/a>", cc[0])): div += '

' + data['cat'] + '

' i += 1 else: curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'") conn.commit() i += 1 else: curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'") conn.commit() i += 1 else: curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'") conn.commit() i += 1 else: curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'") conn.commit() i += 1 curs.execute("select * from data where title = '" + db_pas(name) + "'") rows = curs.fetchall() if(rows): if(rows[0]['acl'] == 'admin'): acl = '(관리자)' elif(rows[0]['acl'] == 'user'): acl = '(로그인)' elsedata = rows[0]['data'] else: data_none = True elsedata = 'None' m = re.search("^사용자:([^/]*)", name) if(m): g = m.groups() curs.execute("select acl from user where id = '" + db_pas(g[0]) + "'") test = curs.fetchall() if(test): if(not test[0]['acl'] == 'user'): acl = '(관리자)' curs.execute("select block from ban where block = '" + db_pas(g[0]) + "'") user = curs.fetchall() if(user): sub = '차단' if(redirect): elsedata = re.sub("^#(?:redirect|넘겨주기)\s(?P[^\n]*)", " * [[\g]] 문서로 넘겨주기", elsedata) enddata = namumark(name, elsedata) conn.close() return(template('read', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = enddata + div, uppage = uppage, acl = acl, topic = topic, redirect = redirect, admin = admin_memu, data_none = data_none, sub = sub, down = down)) @route('/user//topic') @route('/user//topic/') def user_topic_list(name = None, num = 1): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) if(num * 50 <= 0): v = 50 else: v = num * 50 i = v - 50 ydmin = admin_check(1) div = '

' curs.execute("select title, id, sub, ip, date from topic where ip = '" + db_pas(name) + "' order by date desc limit " + str(i) + ", " + str(v)) rows = curs.fetchall() if(rows): for data in rows: title = re.sub('<', '<', data['title']) title = re.sub('>', '>', title) title = re.sub('"', '"', title) sub = re.sub('<', '<', data['sub']) sub = re.sub('>', '>', sub) sub = re.sub('"', '"', sub) if(ydmin == 1): curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'") row = curs.fetchall() if(row): ban = ' (해제)' else: ban = ' (차단)' else: ban = '' ip = ip_pas(data['ip'], 1) div += '' else: div += '

토론명	작성자	시간
' + title + ' (' + sub + ') (#' + data['id'] + ')	' + ip + ban + '	' + data['date'] + '

' else: div = 'None
' div += '
(이전) (이후)' curs.execute("select end, why from ban where block = '" + db_pas(name) + "'") ban_it = curs.fetchall() if(ban_it): sub = '차단' else: sub = None conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '사용자 토론 기록', sub = sub)) @route('/user') def user_info(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) ip = ip_check() raw_ip = ip curs.execute("select * from user where id = '" + db_pas(ip) + "'") rows = curs.fetchall() if(ban_check(ip) == 0): if(rows): if(not rows[0]['acl'] == 'user'): acl = rows[0]['acl'] else: acl = '로그인' else: acl = '일반' else: acl = '차단' ip = ip_pas(ip, 2) conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '사용자 메뉴', logo = set_data['name'], data = ip + '

권한 상태 : ' + acl + '

로그인 관련

로그인

로그아웃

회원가입

기타

')) @route('/custom', method=['GET', 'POST']) def custom_css(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) session = request.environ.get('beaker.session') ip = ip_check() if(request.method == 'POST'): if(not re.search('(\.|:)', ip)): curs.execute("select * from custom where user = '" + db_pas(ip) + "'") css_data = curs.fetchall() if(css_data): curs.execute("update custom set css = '" + db_pas(request.forms.content) + "' where user = '" + db_pas(ip) + "'") else: curs.execute("insert into custom (user, css) value ('" + db_pas(ip) + "', '" + db_pas(request.forms.content) + "')") conn.commit() session['Daydream'] = request.forms.content conn.close() return(redirect('/user')) else: if(not re.search('(\.|:)', ip)): start = '' curs.execute("select * from custom where user = '" + db_pas(ip) + "'") css_data = curs.fetchall() if(css_data): data = css_data[0]['css'] else: data = '' else: start = '비 로그인의 경우에는 로그인하면 날아갑니다.

' try: data = session['Daydream'] except: data = '' conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '커스텀 CSS', logo = set_data['name'], data = start + '')) @route('/count') def count_edit(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select count(title) from history where ip = '" + ip_check() + "'") count = curs.fetchall() if(count): conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기여 횟수', logo = set_data['name'], data = "기여 횟수 : " + str(count[0]["count(title)"]))) else: conn.close() return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기여 횟수', logo = set_data['name'], data = "기여 횟수 : 0")) @route('/random') def random(): conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db']) curs = conn.cursor(pymysql.cursors.DictCursor) curs.execute("select title from data order by rand() limit 1") rows = curs.fetchall() if(rows): conn.close() return(redirect('/w/' + url_pas(rows[0]['title']))) else: conn.close() return(redirect('/')) @route('/views/') def views(name = None): if(re.search('\/', name)): m = re.search('^(.*)\/(.*)$', name) if(m): n = m.groups() plus = '/' + n[0] rename = n[1] else: plus = '' rename = name else: plus = '' rename = name return(static_file(rename, root = './views' + plus)) @route('/error/') def error_test(num = None): if(num == 1): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '비 로그인 상태 입니다.')) elif(num == 2): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '이 계정이 없습니다.')) elif(num == 3): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '권한이 모자랍니다.')) elif(num == 4): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '관리자는 차단, 검사 할 수 없습니다.')) elif(num == 5): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '사용자 오류', logo = set_data['name'], data = '그런 계정이 없습니다.')) elif(num == 6): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '동일한 아이디의 사용자가 있습니다.')) elif(num == 7): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '아이디는 20글자보다 짧아야 합니다.')) elif(num == 8): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '아이디에는 한글과 알파벳과 공백만 허용 됩니다.')) elif(num == 9): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '변경 오류', logo = set_data['name'], data = '그런 계정이 없습니다.')) elif(num == 10): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '변경 오류', logo = set_data['name'], data = '비밀번호가 다릅니다.')) elif(num == 11): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '이미 로그인 되어 있습니다.')) elif(num == 12): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '그런 계정이 없습니다.')) elif(num == 13): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '비밀번호가 다릅니다.')) elif(num == 14): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = 'jpg, gif, jpeg, png(대 소문자 상관 없음)만 가능 합니다.')) elif(num == 15): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '편집 오류', logo = set_data['name'], data = '편집 기록은 500자를 넘을 수 없습니다.')) elif(num == 16): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = '동일한 이름의 파일이 있습니다.')) elif(num == 17): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = '파일 용량은 ' + set_data['upload'] + 'MB를 넘길 수 없습니다.')) elif(num == 18): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '편집 오류', logo = set_data['name'], data = '내용이 원래 문서와 동일 합니다.')) elif(num == 19): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '이동 오류', logo = set_data['name'], data = '이동 하려는 곳에 문서가 이미 있습니다.')) elif(num == 20): return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '비밀번호 오류', logo = set_data['name'], data = '재 확인이랑 비밀번호가 다릅니다.')) else: return(redirect('/')) @error(404) def error_404(error): return(redirect('/w/' + url_pas(set_data['frontpage']))) run(app = app, server='tornado', host = '0.0.0.0', port = int(set_data['port']))

문서명	기여자	시간
' + title + ' (' + data['id'] + '판) ' + revert + ' (' + leng + ')	' + ip + ban + hidden + '	' + data['date'] + '
' + send + '

문서명	기여자	시간
' + title + ' (' + data['id'] + '판) (비교) ' + revert + ' (' + leng + ')	' + ip + ban + hidden + '	' + data['date'] + '
' + send + '

차단자	관리자	기간	이유	시간
' + ip + '	' + data['blocker'] + '	' + data['end'] + '	' + data['why'] + '	' + data['today'] + '

판	기여자	시간
숨김
' + data['id'] + '판 (보기) (원본) (되돌리기) (' + leng + ')	' + ip + ban + hidden + '	' + data['date'] + '
' + send + '

토론명	시간
' + title + ' (' + sub + ')	' + data['date'] + '