app.py 128 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670
  1. from bottle import route, run, template, error, request, static_file, app, BaseRequest
  2. from bottle.ext import beaker
  3. import bcrypt
  4. import os
  5. import difflib
  6. import hashlib
  7. import json
  8. import pymysql
  9. json_data = open('set.json').read()
  10. set_data = json.loads(json_data)
  11. session_opts = {
  12. 'session.type': 'file',
  13. 'session.data_dir': './app_session/',
  14. 'session.auto': True
  15. }
  16. app = beaker.middleware.SessionMiddleware(app(), session_opts)
  17. def redirect(data):
  18. return('<meta http-equiv="refresh" content="0;url=' + data + '" />')
  19. from func import *
  20. from mark import *
  21. db_pas = pymysql.escape_string
  22. r_ver = '2.1.3'
  23. @route('/setup', method=['GET', 'POST'])
  24. def setup():
  25. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4')
  26. curs = conn.cursor(pymysql.cursors.DictCursor)
  27. if(request.method == 'POST'):
  28. if(not request.forms.owner == set_data['pw']):
  29. conn.close()
  30. return(redirect('/error/3'))
  31. else:
  32. try:
  33. curs.execute("use " + set_data['db'])
  34. except:
  35. curs.execute("create database " + set_data['db'])
  36. curs.execute("use " + set_data['db'])
  37. curs.execute("alter database " + set_data['db'] + " character set = utf8mb4 collate = utf8mb4_unicode_ci")
  38. curs.execute("create table data(title text, data longtext, acl text)")
  39. curs.execute("create table history(id text, title text, data longtext, date text, ip text, send text, leng text)")
  40. curs.execute("create table rd(title text, sub text, date text)")
  41. curs.execute("create table user(id text, pw text, acl text)")
  42. curs.execute("create table ban(block text, end text, why text, band text)")
  43. curs.execute("create table topic(id text, title text, sub text, data longtext, date text, ip text, block text, top text)")
  44. curs.execute("create table stop(title text, sub text, close text)")
  45. curs.execute("create table rb(block text, end text, today text, blocker text, why text)")
  46. curs.execute("create table login(user text, ip text, today text)")
  47. curs.execute("create table back(title text, link text, type text)")
  48. curs.execute("create table cat(title text, cat text)")
  49. curs.execute("create table hidhi(title text, re text)")
  50. curs.execute("create table agreedis(title text, sub text)")
  51. curs.execute("create table custom(user text, css longtext)")
  52. curs.execute("create table other(name text, data text)")
  53. curs.execute("create table alist(name text, acl text)")
  54. conn.close()
  55. return(redirect('/'))
  56. else:
  57. conn.close()
  58. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = '<form method="POST"><input name="owner" type="password"> <button class="btn btn-primary" type="submit">저장</button></form>', title = '오픈나무 설치'))
  59. @route('/image/<name:path>')
  60. def static(name = None):
  61. if(os.path.exists(os.path.join('image', name))):
  62. return(static_file(name, root = 'image'))
  63. else:
  64. return(redirect('/'))
  65. @route('/acllist')
  66. def acl_list():
  67. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  68. curs = conn.cursor(pymysql.cursors.DictCursor)
  69. div = '<div>'
  70. i = 0
  71. curs.execute("select title, acl from data where acl = 'admin' or acl = 'user' order by acl desc")
  72. list_data = curs.fetchall()
  73. if(list_data):
  74. for data in list_data:
  75. if(data['acl'] == 'admin'):
  76. acl = '관리자'
  77. else:
  78. acl = '로그인'
  79. div += '<li>' + str(i + 1) + '. <a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (' + acl + ')</li>'
  80. i += 1
  81. else:
  82. div += '</div>'
  83. else:
  84. div = ''
  85. conn.close()
  86. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = 'ACL 문서 목록'))
  87. @route('/listacl')
  88. def list_acl():
  89. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  90. curs = conn.cursor(pymysql.cursors.DictCursor)
  91. div = '<div>'
  92. i = 0
  93. curs.execute("select * from alist order by name desc")
  94. list_data = curs.fetchall()
  95. if(list_data):
  96. for data in list_data:
  97. if(data['acl'] == 'ban'):
  98. acl = '차단'
  99. elif(data['acl'] == 'mdel'):
  100. acl = '많은 문서 삭제'
  101. elif(data['acl'] == 'toron'):
  102. acl = '토론 관리'
  103. elif(data['acl'] == 'check'):
  104. acl = '사용자 검사'
  105. elif(data['acl'] == 'acl'):
  106. acl = '문서 ACL'
  107. elif(data['acl'] == 'hidel'):
  108. acl = '역사 숨김'
  109. elif(data['acl'] == 'owner'):
  110. acl = '소유자'
  111. div += '<li>' + str(i + 1) + '. <a href="/adminplus/' + url_pas(data['name']) + '">' + data['name'] + '</a> (' + acl + ')</li>'
  112. i += 1
  113. else:
  114. div += '<br><a href="/manager/8">(생성)</a></div>'
  115. else:
  116. div = '<a href="/manager/8">(생성)</a></div>'
  117. conn.close()
  118. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = 'ACL 목록'))
  119. @route('/adminplus/<name:path>', method=['POST', 'GET'])
  120. def admin_plus(name = None):
  121. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  122. curs = conn.cursor(pymysql.cursors.DictCursor)
  123. if(admin_check(None) == 1):
  124. if(request.method == 'POST'):
  125. curs.execute("delete from alist where name = '" + db_pas(name) + "'")
  126. if(request.forms.ban):
  127. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'ban')")
  128. if(request.forms.mdel):
  129. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'mdel')")
  130. if(request.forms.toron):
  131. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'toron')")
  132. if(request.forms.check):
  133. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'check')")
  134. if(request.forms.acl):
  135. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'acl')")
  136. if(request.forms.hidel):
  137. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'hidel')")
  138. if(request.forms.owner):
  139. curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'owner')")
  140. conn.commit()
  141. conn.close()
  142. return(redirect('/adminplus/admin'))
  143. else:
  144. curs.execute('select acl from alist where name = "' + db_pas(name) + '"')
  145. test = curs.fetchall()
  146. list = ''
  147. exist_list = ['', '', '', '', '', '', '', '', '']
  148. for go in test:
  149. if(go['acl'] == 'ban'):
  150. exist_list[0] = 'checked="checked"'
  151. elif(go['acl'] == 'mdel'):
  152. exist_list[1] = 'checked="checked"'
  153. elif(go['acl'] == 'toron'):
  154. exist_list[2] = 'checked="checked"'
  155. elif(go['acl'] == 'check'):
  156. exist_list[3] = 'checked="checked"'
  157. elif(go['acl'] == 'acl'):
  158. exist_list[4] = 'checked="checked"'
  159. elif(go['acl'] == 'hidel'):
  160. exist_list[5] = 'checked="checked"'
  161. elif(go['acl'] == 'owner'):
  162. exist_list[7] = 'checked="checked"'
  163. list += '<li><input type="checkbox" name="ban" ' + exist_list[0] + '> 차단</li>'
  164. list += '<li><input type="checkbox" name="mdel" ' + exist_list[1] + '> 많은 문서 삭제</li>'
  165. list += '<li><input type="checkbox" name="toron" ' + exist_list[2] + '> 토론 관리</li>'
  166. list += '<li><input type="checkbox" name="check" ' + exist_list[3] + '> 사용자 검사</li>'
  167. list += '<li><input type="checkbox" name="acl" ' + exist_list[4] + '> 문서 ACL</li>'
  168. list += '<li><input type="checkbox" name="hidel" ' + exist_list[5] + '> 역사 숨김</li>'
  169. list += '<li><input type="checkbox" name="owner" ' + exist_list[7] + '> 소유자</li>'
  170. conn.close()
  171. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '관리 그룹 추가', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/adminplus/' + url_pas(name) + '">' + list + '<div class="form-actions"><button class="btn btn-primary" type="submit">저장</button></div></form>'))
  172. else:
  173. conn.close()
  174. return(redirect('/error/3'))
  175. @route('/adminlist')
  176. def admin_list():
  177. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  178. curs = conn.cursor(pymysql.cursors.DictCursor)
  179. i = 1
  180. div = '<div>'
  181. curs.execute("select * from user where acl = 'admin' or acl = 'owner'")
  182. user_data = curs.fetchall()
  183. if(user_data):
  184. for data in user_data:
  185. name = ip_pas(data['id'], 2)
  186. name += ' (' + data['acl'] + ')'
  187. div += '<li>' + str(i) + '. ' + name + '</li>'
  188. i += 1
  189. else:
  190. div += '</div>'
  191. conn.close()
  192. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '관리자 목록'))
  193. else:
  194. conn.close()
  195. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], title = '관리자 목록'))
  196. @route('/recentchanges')
  197. def recentchanges():
  198. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  199. curs = conn.cursor(pymysql.cursors.DictCursor)
  200. ydmin = admin_check(1)
  201. zdmin = admin_check(6)
  202. div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">문서명</td><td style="text-align: center;width:33.33%;">기여자</td><td style="text-align: center;width:33.33%;">시간</td></tr>'
  203. curs.execute("select id, title, date, ip, send, leng from history order by date desc limit 50")
  204. rows = curs.fetchall()
  205. if(rows):
  206. for data in rows:
  207. if(data['send']):
  208. if(re.search("^(?: *)$", data['send'])):
  209. send = '<br>'
  210. else:
  211. send = data['send']
  212. else:
  213. send = '<br>'
  214. title = data['title']
  215. title = re.sub('<', '&lt;', title)
  216. title = re.sub('>', '&gt;', title)
  217. title = re.sub('"', '&quot;', title)
  218. m = re.search("\+", data['leng'])
  219. n = re.search("\-", data['leng'])
  220. if(m):
  221. leng = '<span style="color:green;">' + data['leng'] + '</span>'
  222. elif(n):
  223. leng = '<span style="color:red;">' + data['leng'] + '</span>'
  224. else:
  225. leng = '<span style="color:gray;">' + data['leng'] + '</span>'
  226. if(ydmin == 1):
  227. curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
  228. row = curs.fetchall()
  229. if(row):
  230. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
  231. else:
  232. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
  233. else:
  234. ban = ''
  235. ip = ip_pas(data['ip'], None)
  236. if((int(data['id']) - 1) == 0):
  237. revert = ''
  238. else:
  239. revert = '<a href="/w/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '/diff/' + data['id'] + '">(비교)</a> <a href="/revert/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '">(되돌리기)</a>'
  240. style = ''
  241. if(zdmin == 1):
  242. curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
  243. row = curs.fetchall()
  244. if(row):
  245. ip += ' (숨김)'
  246. hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(공개)'
  247. else:
  248. hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(숨김)'
  249. else:
  250. curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
  251. row = curs.fetchall()
  252. if(row):
  253. ip = '숨김'
  254. hidden = ''
  255. send = '숨김'
  256. ban = ''
  257. style = 'display:none;'
  258. else:
  259. hidden = ''
  260. div += '<tr style="' + style + '"><td style="text-align: center;width:33.33%;"><a href="/w/' + url_pas(data['title']) + '">' + title + '</a> (<a href="/history/' + url_pas(data['title']) + '">' + data['id'] + '판</a>) ' + revert + ' (' + leng + ')</td><td style="text-align: center;width:33.33%;">' + ip + ban + hidden + '</td><td style="text-align: center;width:33.33%;">' + data['date'] + '</td></tr><tr><td colspan="3" style="text-align: center;width:100%;">' + send + '</td></tr>'
  261. else:
  262. div += '</tbody></table></div>'
  263. else:
  264. div = 'None'
  265. conn.close()
  266. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '최근 변경내역'))
  267. @route('/history/<name:path>/r/<num:int>/hidden')
  268. def history_hidden(name = None, num = None):
  269. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  270. curs = conn.cursor(pymysql.cursors.DictCursor)
  271. if(admin_check(6) == 1):
  272. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  273. exist = curs.fetchall()
  274. if(exist):
  275. curs.execute("delete from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  276. else:
  277. curs.execute("insert into hidhi (title, re) value ('" + db_pas(name) + "', '" + db_pas(str(num)) + "')")
  278. conn.commit()
  279. conn.close()
  280. return(redirect('/history/' + url_pas(name)))
  281. @route('/record/<name:path>')
  282. @route('/record/<name:path>/n/<num:int>')
  283. def user_record(name = None, num = 1):
  284. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  285. curs = conn.cursor(pymysql.cursors.DictCursor)
  286. if(num * 50 <= 0):
  287. v = 50
  288. else:
  289. v = num * 50
  290. i = v - 50
  291. ydmin = admin_check(1)
  292. zdmin = admin_check(6)
  293. div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">문서명</td><td style="text-align: center;width:33.33%;">기여자</td><td style="text-align: center;width:33.33%;">시간</td></tr>'
  294. curs.execute("select * from history where ip = '" + db_pas(name) + "' order by date desc limit " + str(i) + ", " + str(v))
  295. rows = curs.fetchall()
  296. if(rows):
  297. for data in rows:
  298. if(data['send']):
  299. send = data['send']
  300. send = re.sub('<a href="\/w\/(?P<in>[^"]*)">(?P<out>[^&]*)<\/a>', '<a href="/w/\g<in>">\g<out></a>', send)
  301. else:
  302. send = '<br>'
  303. title = data['title']
  304. title = re.sub('<', '&lt;', title)
  305. title = re.sub('>', '&gt;', title)
  306. title = re.sub('"', '&quot;', title)
  307. m = re.search("\+", data['leng'])
  308. n = re.search("\-", data['leng'])
  309. if(m):
  310. leng = '<span style="color:green;">' + data['leng'] + '</span>'
  311. elif(n):
  312. leng = '<span style="color:red;">' + data['leng'] + '</span>'
  313. else:
  314. leng = '<span style="color:gray;">' + data['leng'] + '</span>'
  315. if(ydmin == 1):
  316. curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
  317. row = curs.fetchall()
  318. if(row):
  319. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
  320. else:
  321. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
  322. else:
  323. ban = ''
  324. ip = ip_pas(data['ip'], None)
  325. if((int(data['id']) - 1) == 0):
  326. revert = ''
  327. else:
  328. revert = '<a href="/revert/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '">(되돌리기)</a>'
  329. style = ''
  330. if(zdmin == 1):
  331. curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
  332. row = curs.fetchall()
  333. if(row):
  334. ip += ' (숨김)'
  335. hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(공개)'
  336. else:
  337. hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(숨김)'
  338. else:
  339. curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
  340. row = curs.fetchall()
  341. if(row):
  342. ip = '숨김'
  343. hidden = ''
  344. send = '숨김'
  345. ban = ''
  346. style = 'display:none;'
  347. else:
  348. hidden = ''
  349. div += '<tr style="' + style + '"><td style="text-align: center;width:33.33%;"><a href="/w/' + url_pas(data['title']) + '">' + title + '</a> (<a href="/history/' + url_pas(data['title']) + '">' + data['id'] + '판</a>) <a href="/w/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '/diff/' + data['id'] + '">(비교)</a> ' + revert + ' (' + leng + ')</td><td style="text-align: center;width:33.33%;">' + ip + ban + hidden + '</td><td style="text-align: center;width:33.33%;">' + data['date'] + '</td></tr><tr><td colspan="3" style="text-align: center;width:100%;">' + send + '</td></tr>'
  350. else:
  351. div += '</tbody></table></div>'
  352. else:
  353. div = 'None<br>'
  354. div += '<br><a href="/record/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/record/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
  355. curs.execute("select end, why from ban where block = '" + db_pas(name) + "'")
  356. ban_it = curs.fetchall()
  357. if(ban_it):
  358. div = namumark('', '{{{#!wiki style="border:2px solid red;padding:10px;"\r\n{{{+2 {{{#red 이 사용자는 차단 당했습니다.}}}}}}\r\n\r\n차단 해제 일 : ' + ban_it[0]['end'] + '[br]사유 : ' + ban_it[0]['why'] + '}}}') + '<br>' + div
  359. conn.close()
  360. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '사용자 기록'))
  361. @route('/userlog')
  362. @route('/userlog/n/<num:int>')
  363. def user_log(num = 1):
  364. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  365. curs = conn.cursor(pymysql.cursors.DictCursor)
  366. if(num * 50 <= 0):
  367. i = 50
  368. else:
  369. i = num * 50
  370. j = i - 50
  371. list_data = ''
  372. ydmin = admin_check(1)
  373. curs.execute("select * from user limit " + str(j) + ", " + str(i))
  374. user_list = curs.fetchall()
  375. if(user_list):
  376. for data in user_list:
  377. if(ydmin == 1):
  378. curs.execute("select * from ban where block = '" + db_pas(data['id']) + "'")
  379. ban_exist = curs.fetchall()
  380. if(ban_exist):
  381. ban_button = ' <a href="/ban/' + url_pas(data['id']) + '">(해제)</a>'
  382. else:
  383. ban_button = ' <a href="/ban/' + url_pas(data['id']) + '">(차단)</a>'
  384. else:
  385. ban_button = ''
  386. ip = ip_pas(data['id'], None)
  387. list_data += '<li>' + str(j + 1) + '. ' + ip + ban_button + '</li>'
  388. j += 1
  389. list_data += '<br><a href="/userlog/n/' + str(num - 1) + '">(이전)</a> <a href="/userlog/n/' + str(num + 1) + '">(이후)</a>'
  390. conn.close()
  391. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = list_data, title = '사용자 가입 기록'))
  392. else:
  393. conn.close()
  394. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = '', title = '사용자 가입 기록'))
  395. @route('/backreset')
  396. def xref_reset():
  397. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  398. curs = conn.cursor(pymysql.cursors.DictCursor)
  399. if(admin_check(None) == 1):
  400. i = 0
  401. curs.execute("delete from back")
  402. conn.commit()
  403. curs.execute("select title, data from data")
  404. all = curs.fetchall()
  405. if(all):
  406. for data in all:
  407. namumark(data['title'], data['data'])
  408. conn.close()
  409. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = '에러 없음', title = '완료'))
  410. else:
  411. conn.close()
  412. return(redirect('/error/3'))
  413. @route('/xref/<name:path>')
  414. @route('/xref/<name:path>/n/<num:int>')
  415. def xref(name = None, num = 1):
  416. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  417. curs = conn.cursor(pymysql.cursors.DictCursor)
  418. if(num * 50 <= 0):
  419. v = 50
  420. else:
  421. v = num * 50
  422. i = v - 50
  423. div = ''
  424. curs.execute("delete from back where title = '" + db_pas(name) + "' and link = ''")
  425. conn.commit()
  426. curs.execute("select * from back where title = '" + db_pas(name) + "' order by link asc")
  427. rows = curs.fetchall()
  428. if(rows):
  429. for data in rows:
  430. div += '<li><a href="/w/' + url_pas(data['link']) + '">' + data['link'] + '</a>'
  431. if(data['type']):
  432. div += ' (' + data['type'] + ')</li>'
  433. else:
  434. div += '</li>'
  435. div += '<br><a href="/xref/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/xref/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
  436. conn.close()
  437. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = name, page = url_pas(name), sub = '역링크'))
  438. else:
  439. conn.close()
  440. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = 'None', title = name, page = url_pas(name), sub = '역링크'))
  441. @route('/recentdiscuss')
  442. def recentdiscuss():
  443. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  444. curs = conn.cursor(pymysql.cursors.DictCursor)
  445. div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:50%;">토론명</td><td style="text-align: center;width:50%;">시간</td></tr>'
  446. curs.execute("select * from rd order by date desc limit 50")
  447. rows = curs.fetchall()
  448. if(rows):
  449. for data in rows:
  450. title = data['title']
  451. title = re.sub('<', '&lt;', title)
  452. title = re.sub('>', '&gt;', title)
  453. title = re.sub('"', '&quot;', title)
  454. sub = data['sub']
  455. sub = re.sub('<', '&lt;', sub)
  456. sub = re.sub('>', '&gt;', sub)
  457. sub = re.sub('"', '&quot;', sub)
  458. div += '<tr><td style="text-align: center;width:50%;"><a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '">' + title + '</a> (' + sub + ')</td><td style="text-align: center;width:50%;">' + data['date'] + '</td></tr>'
  459. else:
  460. div += '</tbody></table></div>'
  461. else:
  462. div = 'None'
  463. conn.close()
  464. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '최근 토론내역'))
  465. @route('/blocklog')
  466. @route('/blocklog/n/<number:int>')
  467. def blocklog(num = 1):
  468. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  469. curs = conn.cursor(pymysql.cursors.DictCursor)
  470. if(num * 50 <= 0):
  471. v = 50
  472. else:
  473. v = num * 50
  474. i = v - 50
  475. div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:20%;">차단자</td><td style="text-align: center;width:20%;">관리자</td><td style="text-align: center;width:20%;">기간</td><td style="text-align: center;width:20%;">이유</td><td style="text-align: center;width:20%;">시간</td></tr>'
  476. curs.execute("select * from rb order by today desc")
  477. rows = curs.fetchall()
  478. if(rows):
  479. for data in rows:
  480. why = data['why']
  481. why = re.sub('<', '&lt;', why)
  482. why = re.sub('>', '&gt;', why)
  483. why = re.sub('"', '&quot;', why)
  484. b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", data['block'])
  485. if(b):
  486. ip = data['block'] + ' (대역)'
  487. else:
  488. ip = data['block']
  489. div += '<tr><td style="text-align: center;width:20%;">' + ip + '</a></td><td style="text-align: center;width:20%;">' + data['blocker'] + '</td><td style="text-align: center;width:20%;">' + data['end'] + '</td><td style="text-align: center;width:20%;">' + data['why'] + '</td><td style="text-align: center;width:20%;">' + data['today'] + '</td></tr>'
  490. else:
  491. div += '</tbody></table></div>'
  492. else:
  493. div = 'None'
  494. conn.close()
  495. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '사용자 차단 기록'))
  496. @route('/history/<name:path>', method=['POST', 'GET'])
  497. @route('/history/<name:path>/n/<num:int>', method=['POST', 'GET'])
  498. def history_view(name = None, num = 1):
  499. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  500. curs = conn.cursor(pymysql.cursors.DictCursor)
  501. if(request.method == 'POST'):
  502. conn.close()
  503. return(redirect('/w/' + url_pas(name) + '/r/' + request.forms.b + '/diff/' + request.forms.a))
  504. else:
  505. select = ''
  506. num1 = 0
  507. num2 = 0
  508. curs.execute("select id from history where title = '" + db_pas(name) + "' order by id + 0 desc limit 1")
  509. end_num = curs.fetchall()
  510. if(end_num):
  511. num1 = int(end_num[0]['id']) - num * 50
  512. if(num1 > 0):
  513. num2 = num1 + 51
  514. else:
  515. if(num1 + 51 > 0):
  516. num2 = num1 + 51
  517. admin1 = admin_check(1)
  518. admin2 = admin_check(6)
  519. div = '<div><table style="text-align:center; width:100%;"><tbody><tr><td style="width:33.33%;">판</td><td style="width:33.33%;">기여자</td><td style="width:33.33%;">시간</td></tr>'
  520. curs.execute("select send, leng, ip, date, title, id from history where title = '" + db_pas(name) + "' and id + 0 < '" + str(num2) + "' and id + 0 > '" + str(num1) + "' order by id + 0 desc")
  521. all_data = curs.fetchall()
  522. if(all_data):
  523. for data in all_data:
  524. select += '<option value="' + data['id'] + '">' + data['id'] + '</option>'
  525. if(data['send']):
  526. send = data['send']
  527. else:
  528. send = '<br>'
  529. if(re.search("^\+", data['leng'])):
  530. leng = '<span style="color:green;">' + data['leng'] + '</span>'
  531. elif(re.search("^\-", data['leng'])):
  532. leng = '<span style="color:red;">' + data['leng'] + '</span>'
  533. else:
  534. leng = '<span style="color:gray;">' + data['leng'] + '</span>'
  535. ip = ip_pas(data['ip'], None)
  536. curs.execute("select block from ban where block = '" + db_pas(data['ip']) + "'")
  537. ban_it = curs.fetchall()
  538. if(ban_it):
  539. if(admin1 == 1):
  540. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
  541. else:
  542. ban = ' (X)'
  543. else:
  544. if(admin1 == 1):
  545. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
  546. else:
  547. ban = ''
  548. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(data['id']) + "'")
  549. hid_it = curs.fetchall()
  550. if(hid_it):
  551. if(admin2):
  552. hidden = ' <a href="/history/' + url_pas(name) + '/r/' + url_pas(data['id']) + '/hidden">(공개)'
  553. hid = 0
  554. else:
  555. hid = 1
  556. else:
  557. if(admin2):
  558. hidden = ' <a href="/history/' + url_pas(name) + '/r/' + url_pas(data['id']) + '/hidden">(숨김)'
  559. hid = 0
  560. else:
  561. hidden = ''
  562. hid = 0
  563. if(hid == 1):
  564. div += '<tr><td colspan="3">숨김</td></tr>'
  565. else:
  566. div += '<tr><td>' + data['id'] + '판</a> <a href="/w/' + url_pas(data['title']) + '/r/' + url_pas(data['id']) + '">(보기)</a> <a href="/w/' + url_pas(data['title']) + '/raw/' + url_pas(data['id']) + '">(원본)</a> <a href="/revert/' + url_pas(data['title']) + '/r/' + url_pas(data['id']) + '">(되돌리기)</a> (' + leng + ')</td><td>' + ip + ban + hidden + '</td><td>' + data['date'] + '</td></tr><tr><td colspan="3">' + send + '</td></tr>'
  567. else:
  568. div += '</tbody></table></div>'
  569. else:
  570. div = 'None<br>'
  571. div += '<br><a href="/history/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/history/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
  572. conn.close()
  573. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = name, page = url_pas(name), select = select, sub = '역사'))
  574. @route('/search', method=['POST'])
  575. def search():
  576. return(redirect('/search/' + url_pas(request.forms.search)))
  577. @route('/goto', method=['POST'])
  578. def goto():
  579. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  580. curs = conn.cursor(pymysql.cursors.DictCursor)
  581. curs.execute("select title from data where title = '" + db_pas(request.forms.search) + "'")
  582. data = curs.fetchall()
  583. conn.close()
  584. if(data):
  585. return(redirect('/w/' + url_pas(request.forms.search)))
  586. else:
  587. return(redirect('/search/' + url_pas(request.forms.search)))
  588. @route('/search/<name:path>')
  589. @route('/search/<name:path>/n/<num:int>')
  590. def deep_search(name = None, num = 1):
  591. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  592. curs = conn.cursor(pymysql.cursors.DictCursor)
  593. if(num * 50 <= 0):
  594. v = num * 50
  595. else:
  596. v = 50
  597. i = v - 50
  598. div = ''
  599. div_plus = ''
  600. end = ''
  601. curs.execute("select title from data where title like '%" + db_pas(name) + "%'")
  602. title_list = curs.fetchall()
  603. curs.execute("select title from data where data like '%" + db_pas(name) + "%'")
  604. data_list = curs.fetchall()
  605. curs.execute("select title from data where title = '" + db_pas(name) + "'")
  606. exist = curs.fetchall()
  607. if(exist):
  608. div = '<li>문서로 <a href="/w/' + url_pas(name) + '">바로가기</a></li><br>'
  609. else:
  610. div = '<li>문서가 없습니다. <a class="not_thing" href="/w/' + url_pas(name) + '">바로가기</a></li><br>'
  611. if(title_list):
  612. no = 0
  613. if(data_list):
  614. all_list = title_list + data_list
  615. else:
  616. all_list = title_list
  617. else:
  618. if(data_list):
  619. no = 1
  620. all_list = data_list
  621. else:
  622. all_list = ''
  623. if(not all_list == ''):
  624. for data in all_list:
  625. re_title = re.compile(name, re.I)
  626. if(re.search(re_title, data['title'])):
  627. if(no == 0):
  628. div += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (문서명)</li>'
  629. else:
  630. div_plus += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (내용)</li>'
  631. else:
  632. no = 1
  633. div_plus += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (내용)</li>'
  634. else:
  635. div += '<li>검색 결과 없음</li>'
  636. div += div_plus + end
  637. div += '<br><a href="/search/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/search/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
  638. conn.close()
  639. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = name, sub = '검색'))
  640. @route('/w/<name:path>/r/<num:int>')
  641. def old_view(name = None, num = None):
  642. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  643. curs = conn.cursor(pymysql.cursors.DictCursor)
  644. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  645. row = curs.fetchall()
  646. if(row):
  647. if(admin_check(6) == 1):
  648. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  649. rows = curs.fetchall()
  650. if(rows):
  651. conn.close()
  652. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = namumark(name, rows[0]['data']), sub = '옛 문서'))
  653. else:
  654. conn.close()
  655. return(redirect('/history/' + url_pas(name)))
  656. else:
  657. conn.close()
  658. return(redirect('/error/3'))
  659. else:
  660. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  661. rows = curs.fetchall()
  662. if(rows):
  663. conn.close()
  664. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = namumark(name, rows[0]['data']), sub = '옛 문서'))
  665. else:
  666. conn.close()
  667. return(redirect('/history/' + url_pas(name)))
  668. @route('/w/<name:path>/raw/<num:int>')
  669. def old_raw(name = None, num = None):
  670. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  671. curs = conn.cursor(pymysql.cursors.DictCursor)
  672. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  673. row = curs.fetchall()
  674. if(row):
  675. if(not admin_check(6) == 1):
  676. conn.close()
  677. return(redirect('/error/3'))
  678. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  679. rows = curs.fetchall()
  680. if(rows):
  681. enddata = re.sub('<', '&lt;', rows[0]['data'])
  682. enddata = re.sub('>', '&gt;', enddata)
  683. enddata = re.sub('"', '&quot;', enddata)
  684. enddata = '<textarea id="other_text">' + enddata + '</textarea>'
  685. conn.close()
  686. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = enddata, sub = '옛 원본'))
  687. else:
  688. conn.close()
  689. return(redirect('/history/' + url_pas(name)))
  690. @route('/raw/<name:path>')
  691. def raw_view(name = None):
  692. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  693. curs = conn.cursor(pymysql.cursors.DictCursor)
  694. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  695. rows = curs.fetchall()
  696. if(rows):
  697. enddata = re.sub('<', '&lt;', rows[0]['data'])
  698. enddata = re.sub('>', '&gt;', enddata)
  699. enddata = re.sub('"', '&quot;', enddata)
  700. enddata = '<textarea id="other_text">' + enddata + '</textarea>'
  701. conn.close()
  702. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = enddata, sub = '원본'))
  703. else:
  704. conn.close()
  705. return(redirect('/w/' + url_pas(name)))
  706. @route('/revert/<name:path>/r/<num:int>', method=['POST', 'GET'])
  707. def revert(name = None, num = None):
  708. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  709. curs = conn.cursor(pymysql.cursors.DictCursor)
  710. ip = ip_check()
  711. can = acl_check(ip, name)
  712. today = get_time()
  713. if(request.method == 'POST'):
  714. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  715. row = curs.fetchall()
  716. if(row):
  717. if(admin_check(6) == 1):
  718. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  719. rows = curs.fetchall()
  720. if(rows):
  721. if(can == 1):
  722. conn.close()
  723. return(redirect('/ban'))
  724. else:
  725. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  726. row = curs.fetchall()
  727. if(row):
  728. leng = leng_check(len(row[0]['data']), len(rows[0]['data']))
  729. curs.execute("update data set data = '" + db_pas(rows[0]['data']) + "' where title = '" + db_pas(name) + "'")
  730. conn.commit()
  731. else:
  732. leng = '+' + str(len(rows[0]['data']))
  733. curs.execute("insert into data (title, data, acl) value ('" + db_pas(name) + "', '" + db_pas(rows[0]['data']) + "', '')")
  734. conn.commit()
  735. history_plus(name, rows[0]['data'], today, ip, '문서를 ' + str(num) + '판으로 되돌렸습니다.', leng)
  736. conn.close()
  737. return(redirect('/w/' + url_pas(name)))
  738. else:
  739. conn.close()
  740. return(redirect('/w/' + url_pas(name)))
  741. else:
  742. conn.close()
  743. return(redirect('/error/3'))
  744. else:
  745. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  746. rows = curs.fetchall()
  747. if(rows):
  748. if(can == 1):
  749. conn.close()
  750. return(redirect('/ban'))
  751. else:
  752. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  753. row = curs.fetchall()
  754. if(row):
  755. leng = leng_check(len(row[0]['data']), len(rows[0]['data']))
  756. curs.execute("update data set data = '" + db_pas(rows[0]['data']) + "' where title = '" + db_pas(name) + "'")
  757. conn.commit()
  758. else:
  759. leng = '+' + str(len(rows[0]['data']))
  760. curs.execute("insert into data (title, data, acl) value ('" + db_pas(name) + "', '" + db_pas(rows[0]['data']) + "', '')")
  761. conn.commit()
  762. history_plus(name, rows[0]['data'], today, ip, '문서를 ' + str(num) + '판으로 되돌렸습니다.', leng)
  763. conn.close()
  764. return(redirect('/w/' + url_pas(name)))
  765. else:
  766. conn.close()
  767. return(redirect('/w/' + url_pas(name)) )
  768. else:
  769. curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
  770. row = curs.fetchall()
  771. if(row):
  772. if(admin_check(6) == 1):
  773. if(can == 1):
  774. conn.close()
  775. return(redirect('/ban'))
  776. else:
  777. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  778. rows = curs.fetchall()
  779. if(rows):
  780. conn.close()
  781. return(template('revert', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), r = url_pas(str(num)), plus = '정말 되돌리시겠습니까?', sub = '되돌리기'))
  782. else:
  783. conn.close()
  784. return(redirect('/w/' + url_pas(name)))
  785. else:
  786. conn.close()
  787. return(redirect('/error/3'))
  788. else:
  789. if(can == 1):
  790. conn.close()
  791. return(redirect('/ban'))
  792. else:
  793. curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
  794. rows = curs.fetchall()
  795. if(rows):
  796. conn.close()
  797. return(template('revert', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), r = url_pas(str(num)), plus = '정말 되돌리시겠습니까?', sub = '되돌리기'))
  798. else:
  799. conn.close()
  800. return(redirect('/w/' + url_pas(name)))
  801. @route('/mdel', method=['POST', 'GET'])
  802. def many_del():
  803. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  804. curs = conn.cursor(pymysql.cursors.DictCursor)
  805. today = get_time()
  806. ip = ip_check()
  807. if(admin_check(2) == 1):
  808. if(request.method == 'POST'):
  809. data = request.forms.content + '\r\n'
  810. while(True):
  811. m = re.search('(.*)\r\n', data)
  812. if(m):
  813. g = m.groups()
  814. curs.execute("select data from data where title = '" + db_pas(g[0]) + "'")
  815. rows = curs.fetchall()
  816. if(rows):
  817. leng = '-' + str(len(rows[0]['data']))
  818. curs.execute("delete from data where title = '" + db_pas(g[0]) + "'")
  819. history_plus(g[0], '', today, ip, request.forms.send + ' (대량 삭제)', leng)
  820. data = re.sub('(.*)\r\n', '', data, 1)
  821. else:
  822. break
  823. conn.commit()
  824. conn.close()
  825. return(redirect('/'))
  826. else:
  827. conn.close()
  828. return(template('mdel', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '많은 문서 삭제', logo = set_data['name']))
  829. else:
  830. conn.close()
  831. return(redirect('/error/3'))
  832. @route('/edit/<name:path>/section/<num:int>', method=['POST', 'GET'])
  833. def section_edit(name = None, num = None):
  834. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  835. curs = conn.cursor(pymysql.cursors.DictCursor)
  836. ip = ip_check()
  837. can = acl_check(ip, name)
  838. if(request.method == 'POST'):
  839. if(len(request.forms.send) > 500):
  840. conn.close()
  841. return(redirect('/error/15'))
  842. else:
  843. today = get_time()
  844. content = savemark(request.forms.content)
  845. curs.execute("delete from back where title = '" + db_pas(name) + "'")
  846. conn.commit()
  847. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  848. rows = curs.fetchall()
  849. if(rows):
  850. if(request.forms.otent == content):
  851. conn.close()
  852. return(redirect('/error/18'))
  853. else:
  854. if(can == 1):
  855. conn.close()
  856. return(redirect('/ban'))
  857. else:
  858. leng = leng_check(len(request.forms.otent), len(content))
  859. content = rows[0]['data'].replace(request.forms.otent, content)
  860. history_plus(name, content, today, ip, html_pas(request.forms.send, 2), leng)
  861. curs.execute("update data set data = '" + db_pas(content) + "' where title = '" + db_pas(name) + "'")
  862. conn.commit()
  863. include_check(name, content)
  864. conn.close()
  865. return(redirect('/w/' + url_pas(name)))
  866. else:
  867. conn.close()
  868. return(redirect('/w/' + url_pas(name)))
  869. else:
  870. if(can == 1):
  871. conn.close()
  872. return(redirect('/ban'))
  873. else:
  874. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  875. rows = curs.fetchall()
  876. if(rows):
  877. i = 0
  878. j = 0
  879. gdata = rows[0]['data'] + '\r\n'
  880. while(True):
  881. m = re.search("((?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n(?:(?:(?:(?!(?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n).)*)(?:\n)?)+)", gdata)
  882. if(m):
  883. if(i == num - 1):
  884. g = m.groups()
  885. gdata = re.sub("\r\n$", "", g[0])
  886. break
  887. else:
  888. gdata = re.sub("((?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n(?:(?:(?:(?!(?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n).)*)(?:\n)?)+)", "", gdata, 1)
  889. i += 1
  890. else:
  891. j = 1
  892. break
  893. if(j == 0):
  894. gdata = re.sub("\r\n$", "", gdata)
  895. conn.close()
  896. return(template('edit', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = gdata, section = 1, number = num, sub = '편집'))
  897. else:
  898. conn.close()
  899. return(redirect('/w/' + url_pas(name)))
  900. else:
  901. conn.close()
  902. return(redirect('/w/' + url_pas(name)))
  903. @route('/edit/<name:path>', method=['POST', 'GET'])
  904. def edit(name = None):
  905. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  906. curs = conn.cursor(pymysql.cursors.DictCursor)
  907. ip = ip_check()
  908. can = acl_check(ip, name)
  909. if(request.method == 'POST'):
  910. if(len(request.forms.send) > 500):
  911. conn.close()
  912. return(redirect('/error/15'))
  913. else:
  914. today = get_time()
  915. content = savemark(request.forms.content)
  916. curs.execute("delete from back where title = '" + db_pas(name) + "'")
  917. conn.commit()
  918. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  919. rows = curs.fetchall()
  920. if(rows):
  921. if(rows[0]['data'] == content):
  922. conn.close()
  923. return(redirect('/error/18'))
  924. else:
  925. if(can == 1):
  926. conn.close()
  927. return(redirect('/ban'))
  928. else:
  929. leng = leng_check(len(rows[0]['data']), len(content))
  930. history_plus(name, content, today, ip, html_pas(request.forms.send, 2), leng)
  931. curs.execute("update data set data = '" + db_pas(content) + "' where title = '" + db_pas(name) + "'")
  932. conn.commit()
  933. else:
  934. if(can == 1):
  935. conn.close()
  936. return(redirect('/ban'))
  937. else:
  938. leng = '+' + str(len(content))
  939. history_plus(name, content, today, ip, html_pas(request.forms.send, 2), leng)
  940. curs.execute("insert into data (title, data, acl) value ('" + db_pas(name) + "', '" + db_pas(content) + "', '')")
  941. conn.commit()
  942. include_check(name, content)
  943. conn.close()
  944. return(redirect('/w/' + url_pas(name)))
  945. else:
  946. if(can == 1):
  947. conn.close()
  948. return(redirect('/ban'))
  949. else:
  950. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  951. rows = curs.fetchall()
  952. if(rows):
  953. conn.close()
  954. return(template('edit', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = rows[0]['data'], sub = '편집'))
  955. else:
  956. conn.close()
  957. return(template('edit', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = '', sub = '편집'))
  958. @route('/preview/<name:path>/section/<num:int>', method=['POST'])
  959. def section_preview(name = None, num = None):
  960. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  961. curs = conn.cursor(pymysql.cursors.DictCursor)
  962. ip = ip_check()
  963. can = acl_check(ip, name)
  964. if(can == 1):
  965. conn.close()
  966. return(redirect('/ban'))
  967. else:
  968. newdata = request.forms.content
  969. newdata = re.sub('^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)', ' * [[\g<in>]] 문서로 넘겨주기', newdata)
  970. enddata = namumark(name, newdata)
  971. conn.close()
  972. return(template('edit', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = request.forms.content, preview = 1, enddata = enddata, section = 1, number = num, odata = request.forms.otent, sub = '미리보기'))
  973. @route('/preview/<name:path>', method=['POST'])
  974. def preview(name = None):
  975. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  976. curs = conn.cursor(pymysql.cursors.DictCursor)
  977. ip = ip_check()
  978. can = acl_check(ip, name)
  979. if(can == 1):
  980. conn.close()
  981. return(redirect('/ban'))
  982. else:
  983. newdata = request.forms.content
  984. newdata = re.sub('^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)', ' * [[\g<in>]] 문서로 넘겨주기', newdata)
  985. enddata = namumark(name, newdata)
  986. conn.close()
  987. return(template('edit', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = request.forms.content, preview = 1, enddata = enddata, sub = '미리보기'))
  988. @route('/delete/<name:path>', method=['POST', 'GET'])
  989. def delete(name = None):
  990. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  991. curs = conn.cursor(pymysql.cursors.DictCursor)
  992. ip = ip_check()
  993. can = acl_check(ip, name)
  994. if(request.method == 'POST'):
  995. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  996. rows = curs.fetchall()
  997. if(rows):
  998. if(can == 1):
  999. conn.close()
  1000. return(redirect('/ban'))
  1001. else:
  1002. today = get_time()
  1003. leng = '-' + str(len(rows[0]['data']))
  1004. history_plus(name, '', today, ip, request.forms.send + ' (삭제)', leng)
  1005. curs.execute("delete from data where title = '" + db_pas(name) + "'")
  1006. conn.commit()
  1007. conn.close()
  1008. return(redirect('/w/' + url_pas(name)))
  1009. else:
  1010. conn.close()
  1011. return(redirect('/w/' + url_pas(name)))
  1012. else:
  1013. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  1014. rows = curs.fetchall()
  1015. if(rows):
  1016. if(can == 1):
  1017. conn.close()
  1018. return(redirect('/ban'))
  1019. else:
  1020. conn.close()
  1021. return(template('del', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), plus = '정말 삭제 하시겠습니까?', sub = '삭제'))
  1022. else:
  1023. conn.close()
  1024. return(redirect('/w/' + url_pas(name)))
  1025. @route('/move/<name:path>', method=['POST', 'GET'])
  1026. def move(name = None):
  1027. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1028. curs = conn.cursor(pymysql.cursors.DictCursor)
  1029. ip = ip_check()
  1030. can = acl_check(ip, name)
  1031. today = get_time()
  1032. if(request.method == 'POST'):
  1033. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  1034. rows = curs.fetchall()
  1035. if(can == 1):
  1036. conn.close()
  1037. return(redirect('/ban'))
  1038. else:
  1039. leng = '0'
  1040. curs.execute("select * from history where title = '" + db_pas(request.forms.title) + "'")
  1041. row = curs.fetchall()
  1042. if(row):
  1043. conn.close()
  1044. return(redirect('/error/19'))
  1045. else:
  1046. history_plus(name, rows[0]['data'], today, ip, request.forms.send + ' (<a href="/w/' + url_pas(name) + '">' + name + '</a> - <a href="/w/' + url_pas(request.forms.title) + '">' + request.forms.title + '</a> 이동)', leng)
  1047. if(rows):
  1048. curs.execute("update data set title = '" + db_pas(request.forms.title) + "' where title = '" + db_pas(name) + "'")
  1049. curs.execute("update history set title = '" + db_pas(request.forms.title) + "' where title = '" + db_pas(name) + "'")
  1050. conn.commit()
  1051. conn.close()
  1052. return(redirect('/w/' + url_pas(request.forms.title)))
  1053. else:
  1054. if(can == 1):
  1055. conn.close()
  1056. return(redirect('/ban'))
  1057. else:
  1058. conn.close()
  1059. return(template('move', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), plus = '정말 이동 하시겠습니까?', sub = '이동'))
  1060. @route('/other')
  1061. def other():
  1062. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1063. curs = conn.cursor(pymysql.cursors.DictCursor)
  1064. conn.close()
  1065. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기타 메뉴', logo = set_data['name'], data = '<h2 style="margin-top: 0px;">기록</h2><li><a href="/blocklog">사용자 차단 기록</a></li><li><a href="/userlog">사용자 가입 기록</a></li><li><a href="/manager/6">사용자 기록</a></li><li><a href="/manager/7">사용자 토론 기록</a></li><h2>기타</h2><li><a href="/titleindex">모든 문서</a></li><li><a href="/acllist">ACL 문서 목록</a></li><li><a href="/upload">업로드</a></li><li><a href="/adminlist">관리자 목록</a></li><li><a href="/manager/1">관리자 메뉴</a></li><br>이 오픈나무의 버전은 <a href="https://github.com/2DU/openNAMU/blob/normal/version.md">v' + r_ver + '</a> 입니다.'))
  1066. @route('/manager/<num:int>', method=['POST', 'GET'])
  1067. def manager(num = None):
  1068. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1069. curs = conn.cursor(pymysql.cursors.DictCursor)
  1070. if(num == 1):
  1071. conn.close()
  1072. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '관리자 메뉴', logo = set_data['name'], data = '<h2 style="margin-top: 0px;">목록</h2><li><a href="/manager/2">문서 ACL</a></li><li><a href="/manager/3">사용자 체크</a></li><li><a href="/manager/4">사용자 차단</a></li><li><a href="/manager/5">관리자 권한 주기</a></li><li><a href="/mdel">많은 문서 삭제</a></li><h2>소유자</h2><li><a href="/backreset">모든 역링크 재 생성</a></li><li><a href="/manager/8">관리 그룹 생성</a></li><h2>기타</h2><li>이 메뉴에 없는 기능은 해당 문서의 역사나 토론에서 바로 사용 가능함</li>'))
  1073. elif(num == 2):
  1074. if(request.method == 'POST'):
  1075. conn.close()
  1076. return(redirect('/acl/' + url_pas(request.forms.name)))
  1077. else:
  1078. conn.close()
  1079. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = 'ACL 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/2"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>'))
  1080. elif(num == 3):
  1081. if(request.method == 'POST'):
  1082. conn.close()
  1083. return(redirect('/check/' + url_pas(request.forms.name)))
  1084. else:
  1085. conn.close()
  1086. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '체크 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/3"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>'))
  1087. elif(num == 4):
  1088. if(request.method == 'POST'):
  1089. conn.close()
  1090. return(redirect('/ban/' + url_pas(request.forms.name)))
  1091. else:
  1092. conn.close()
  1093. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '차단 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/4"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button><br><br><span>아이피 앞 두자리 (XXX.XXX) 입력하면 대역 차단</span></form>'))
  1094. elif(num == 5):
  1095. if(request.method == 'POST'):
  1096. conn.close()
  1097. return(redirect('/admin/' + url_pas(request.forms.name)))
  1098. else:
  1099. conn.close()
  1100. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/5"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>') )
  1101. elif(num == 6):
  1102. if(request.method == 'POST'):
  1103. conn.close()
  1104. return(redirect('/record/' + url_pas(request.forms.name)))
  1105. else:
  1106. conn.close()
  1107. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기록 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/6"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>') )
  1108. elif(num == 7):
  1109. if(request.method == 'POST'):
  1110. conn.close()
  1111. return(redirect('/user/' + url_pas(request.forms.name) + '/topic'))
  1112. else:
  1113. conn.close()
  1114. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '토론 기록 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/7"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>') )
  1115. elif(num == 8):
  1116. if(request.method == 'POST'):
  1117. conn.close()
  1118. return(redirect('/adminplus/' + url_pas(request.forms.name)))
  1119. else:
  1120. conn.close()
  1121. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '그룹 생성 이동', logo = set_data['name'], data = '<form id="usrform" method="POST" action="/manager/8"><input name="name" type="text"><br><br><button class="btn btn-primary" type="submit">이동</button></form>') )
  1122. else:
  1123. conn.close()
  1124. return(redirect('/'))
  1125. @route('/titleindex')
  1126. def title_index():
  1127. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1128. curs = conn.cursor(pymysql.cursors.DictCursor)
  1129. i = [0, 0, 0, 0, 0, 0]
  1130. data = '<div>'
  1131. curs.execute("select title from data order by title asc")
  1132. title_list = curs.fetchall()
  1133. if(title_list):
  1134. for list_data in title_list:
  1135. data += '<li>' + str(i[0] + 1) + '. <a href="/w/' + url_pas(list_data['title']) + '">' + list_data['title'] + '</a></li>'
  1136. if(re.search('^분류:', list_data['title'])):
  1137. i[1] += 1
  1138. elif(re.search('^사용자:', list_data['title'])):
  1139. i[2] += 1
  1140. elif(re.search('^틀:', list_data['title'])):
  1141. i[3] += 1
  1142. elif(re.search('^파일:', list_data['title'])):
  1143. i[4] += 1
  1144. else:
  1145. i[5] += 1
  1146. i[0] += 1
  1147. else:
  1148. data += '</div>'
  1149. data += '<br><li>이 위키에는 총 ' + str(i[0]) + '개의 문서가 있습니다.</li><br><li>틀 문서는 총 ' + str(i[3]) + '개의 문서가 있습니다.</li><li>분류 문서는 총 ' + str(i[1]) + '개의 문서가 있습니다.</li><li>사용자 문서는 총 ' + str(i[2]) + '개의 문서가 있습니다.</li><li>파일 문서는 총 ' + str(i[4]) + '개의 문서가 있습니다.</li><li>나머지 문서는 총 ' + str(i[5]) + '개의 문서가 있습니다.</li>'
  1150. else:
  1151. data = 'None'
  1152. conn.close()
  1153. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = data, title = '모든 문서'))
  1154. @route('/topic/<name:path>/sub/<sub:path>/b/<num:int>')
  1155. def topic_block(name = None, sub = None, num = None):
  1156. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1157. curs = conn.cursor(pymysql.cursors.DictCursor)
  1158. if(admin_check(3) == 1):
  1159. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1160. block = curs.fetchall()
  1161. if(block):
  1162. if(block[0]['block'] == 'O'):
  1163. curs.execute("update topic set block = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1164. else:
  1165. curs.execute("update topic set block = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1166. conn.commit()
  1167. rd_plus(name, sub, get_time())
  1168. conn.close()
  1169. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1170. else:
  1171. conn.close()
  1172. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1173. else:
  1174. conn.close()
  1175. return(redirect('/error/3'))
  1176. @route('/topic/<name:path>/sub/<sub:path>/notice/<num:int>')
  1177. def topic_top(name = None, sub = None, num = None):
  1178. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1179. curs = conn.cursor(pymysql.cursors.DictCursor)
  1180. if(admin_check(3) == 1):
  1181. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1182. topic_data = curs.fetchall()
  1183. if(topic_data):
  1184. curs.execute("select * from topic where id = '" + str(num) + "' and title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
  1185. top_data = curs.fetchall()
  1186. if(top_data):
  1187. if(top_data[0]['top'] == 'O'):
  1188. curs.execute("update topic set top = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1189. else:
  1190. curs.execute("update topic set top = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
  1191. conn.commit()
  1192. rd_plus(name, sub, get_time())
  1193. conn.close()
  1194. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1195. else:
  1196. conn.close()
  1197. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1198. else:
  1199. conn.close()
  1200. return(redirect('/error/3'))
  1201. @route('/topic/<name:path>/sub/<sub:path>/stop')
  1202. def topic_stop(name = None, sub = None):
  1203. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1204. curs = conn.cursor(pymysql.cursors.DictCursor)
  1205. if(admin_check(3) == 1):
  1206. ip = ip_check()
  1207. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
  1208. topic_check = curs.fetchall()
  1209. if(topic_check):
  1210. time = get_time()
  1211. curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
  1212. stop = curs.fetchall()
  1213. if(stop):
  1214. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 재 시작', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1215. curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
  1216. else:
  1217. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 정지', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1218. curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', '')")
  1219. conn.commit()
  1220. rd_plus(name, sub, time)
  1221. conn.close()
  1222. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1223. else:
  1224. conn.close()
  1225. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1226. else:
  1227. conn.close()
  1228. return(redirect('/error/3'))
  1229. @route('/topic/<name:path>/sub/<sub:path>/close')
  1230. def topic_close(name = None, sub = None):
  1231. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1232. curs = conn.cursor(pymysql.cursors.DictCursor)
  1233. if(admin_check(3) == 1):
  1234. ip = ip_check()
  1235. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
  1236. topic_check = curs.fetchall()
  1237. if(topic_check):
  1238. time = get_time()
  1239. curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
  1240. close = curs.fetchall()
  1241. if(close):
  1242. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 다시 열기', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1243. curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
  1244. else:
  1245. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 닫음', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1246. curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', 'O')")
  1247. conn.commit()
  1248. rd_plus(name, sub, time)
  1249. conn.close()
  1250. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1251. else:
  1252. conn.close()
  1253. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1254. else:
  1255. conn.close()
  1256. return(redirect('/error/3'))
  1257. @route('/topic/<name:path>/sub/<sub:path>/agree')
  1258. def topic_agree(name = None, sub = None):
  1259. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1260. curs = conn.cursor(pymysql.cursors.DictCursor)
  1261. if(admin_check(3) == 1):
  1262. ip = ip_check()
  1263. curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
  1264. topic_check = curs.fetchall()
  1265. if(topic_check):
  1266. time = get_time()
  1267. curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
  1268. agree = curs.fetchall()
  1269. if(agree):
  1270. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 결렬', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1271. curs.execute("delete from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
  1272. else:
  1273. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 완료', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
  1274. curs.execute("insert into agreedis (title, sub) value ('" + db_pas(name) + "', '" + db_pas(sub) + "')")
  1275. conn.commit()
  1276. rd_plus(name, sub, time)
  1277. conn.close()
  1278. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1279. else:
  1280. conn.close()
  1281. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1282. else:
  1283. conn.close()
  1284. return(redirect('/error/3'))
  1285. @route('/topic/<name:path>/sub/<sub:path>', method=['POST', 'GET'])
  1286. def topic(name = None, sub = None):
  1287. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1288. curs = conn.cursor(pymysql.cursors.DictCursor)
  1289. ip = ip_check()
  1290. ban = topic_check(ip, name, sub)
  1291. admin = admin_check(3)
  1292. if(request.method == 'POST'):
  1293. curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
  1294. rows = curs.fetchall()
  1295. if(rows):
  1296. num = int(rows[0]['id']) + 1
  1297. else:
  1298. num = 1
  1299. if(ban == 1 and not admin == 1):
  1300. conn.close()
  1301. return(redirect('/ban'))
  1302. else:
  1303. today = get_time()
  1304. rd_plus(name, sub, today)
  1305. aa = re.sub("\[\[(분류:(?:(?:(?!\]\]).)*))\]\]", "[br]", request.forms.content)
  1306. aa = savemark(aa)
  1307. curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + str(num) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '" + db_pas(aa) + "', '" + today + "', '" + ip + "', '', '')")
  1308. conn.commit()
  1309. conn.close()
  1310. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
  1311. else:
  1312. style = ''
  1313. curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
  1314. close = curs.fetchall()
  1315. curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
  1316. stop = curs.fetchall()
  1317. if(admin == 1):
  1318. div = '<div>'
  1319. if(close):
  1320. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/close">(토론 열기)</a> '
  1321. else:
  1322. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/close">(토론 닫기)</a> '
  1323. if(stop):
  1324. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/stop">(토론 재개)</a> '
  1325. else:
  1326. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/stop">(토론 정지)</a> '
  1327. curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
  1328. agree = curs.fetchall()
  1329. if(agree):
  1330. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/agree">(합의 취소)</a>'
  1331. else:
  1332. div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/agree">(합의 완료)</a>'
  1333. div += '<br><br>'
  1334. else:
  1335. div = '<div>'
  1336. if(stop or close):
  1337. if(not admin == 1):
  1338. style = 'display:none;'
  1339. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 asc")
  1340. toda = curs.fetchall()
  1341. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and top = 'O' order by id + 0 asc")
  1342. top = curs.fetchall()
  1343. if(top):
  1344. for dain in top:
  1345. top_data = namumark('', dain['data'])
  1346. top_data = re.sub("(?P<in>#(?:[0-9]*))", '<a href="\g<in>">\g<in></a>', top_data)
  1347. ip = ip_pas(dain['ip'], 1)
  1348. div += '<table id="toron"><tbody><tr><td id="toroncolorred"><a href="#' + dain['id'] + '">#' + dain['id'] + '</a> ' + ip + ' <span style="float:right;">' + dain['date'] + '</span></td></tr><tr><td>' + top_data + '</td></tr></tbody></table><br>'
  1349. i = 0
  1350. for dain in toda:
  1351. if(i == 0):
  1352. start = dain['ip']
  1353. indata = namumark('', dain['data'])
  1354. indata = re.sub("(?P<in>#(?:[0-9]*))", '<a href="\g<in>">\g<in></a>', indata)
  1355. if(dain['block'] == 'O'):
  1356. indata = '<br>'
  1357. block = 'id="block"'
  1358. else:
  1359. block = ''
  1360. if(admin == 1):
  1361. if(dain['block'] == 'O'):
  1362. isblock = ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/b/' + str(i + 1) + '">(해제)</a>'
  1363. else:
  1364. isblock = ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/b/' + str(i + 1) + '">(가림)</a>'
  1365. curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + db_pas(str(i + 1)) + "' and top = 'O'")
  1366. row = curs.fetchall()
  1367. if(row):
  1368. isblock = isblock + ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/notice/' + str(i + 1) + '">(해제)</a>'
  1369. else:
  1370. isblock = isblock + ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/notice/' + str(i + 1) + '">(공지)</a>'
  1371. curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'")
  1372. ban_it = curs.fetchall()
  1373. if(ban_it):
  1374. ban = ' <a href="/ban/' + url_pas(dain['ip']) + '">(해제)</a>' + isblock
  1375. else:
  1376. ban = ' <a href="/ban/' + url_pas(dain['ip']) + '">(차단)</a>' + isblock
  1377. else:
  1378. curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'")
  1379. ban_it = curs.fetchall()
  1380. if(ban_it):
  1381. ban = ' (X)'
  1382. else:
  1383. ban = ''
  1384. chad = ''
  1385. curs.execute('select acl from user where id = "' + db_pas(dain['ip']) + '"')
  1386. adch = curs.fetchall()
  1387. if(adch):
  1388. if(not adch[0]['acl'] == 'user'):
  1389. chad = ' ★'
  1390. ip = ip_pas(dain['ip'], 1)
  1391. if(dain['top'] == '1'):
  1392. color = 'blue'
  1393. elif(dain['ip'] == start):
  1394. color = 'green'
  1395. else:
  1396. color = ''
  1397. div += '<table id="toron"><tbody><tr><td id="toroncolor' + color + '"><a href="javascript:void(0);" id="' + str(i + 1) + '">#' + str(i + 1) + '</a> ' + ip + chad + ban + ' <span style="float:right;">' + dain['date'] + '</span></td></tr><tr><td ' + block + '>' + indata + '</td></tr></tbody></table><br>'
  1398. i += 1
  1399. conn.close()
  1400. return(template('vstopic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), suburl = url_pas(sub), toron = sub, logo = set_data['name'], rows = div, ban = ban, style = style, sub = '토론'))
  1401. @route('/topic/<name:path>/close')
  1402. def close_topic_list(name = None):
  1403. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1404. curs = conn.cursor(pymysql.cursors.DictCursor)
  1405. div = '<div>'
  1406. i = 0
  1407. curs.execute("select * from stop where title = '" + db_pas(name) + "' and close = 'O' order by sub asc")
  1408. rows = curs.fetchall()
  1409. for data in rows:
  1410. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'")
  1411. row = curs.fetchall()
  1412. if(row):
  1413. indata = namumark(name, row[0]['data'])
  1414. if(row[0]['block'] == 'O'):
  1415. indata = '<br>'
  1416. block = 'id="block"'
  1417. else:
  1418. block = ''
  1419. ip = ip_pas(row[0]['ip'], 1)
  1420. div += '<h2><a href="/topic/' + url_pas(name) + '/sub/' + url_pas(data['sub']) + '">' + str((i + 1)) + '. ' + data['sub'] + '</a></h2><table id="toron"><tbody><tr><td id="toroncolorgreen"><a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + row[0]['date'] + '</span></td></tr><tr><td ' + block + '>' + indata + '</td></tr></tbody></table><br>'
  1421. i += 1
  1422. else:
  1423. div += '</div>'
  1424. conn.close()
  1425. return(template('topic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], plus = div, sub = '닫힘'))
  1426. @route('/topic/<name:path>/agree')
  1427. def agree_topic_list(name = None):
  1428. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1429. curs = conn.cursor(pymysql.cursors.DictCursor)
  1430. div = '<div>'
  1431. i = 0
  1432. curs.execute("select * from agreedis where title = '" + db_pas(name) + "' order by sub asc")
  1433. agree_list = curs.fetchall()
  1434. for data in agree_list:
  1435. curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'")
  1436. topic_data = curs.fetchall()
  1437. if(topic_data):
  1438. indata = namumark(name, topic_data[0]['data'])
  1439. if(topic_data[0]['block'] == 'O'):
  1440. indata = '<br>'
  1441. block = 'id="block"'
  1442. else:
  1443. block = ''
  1444. ip = ip_pas(topic_data[0]['ip'], 1)
  1445. div += '<h2><a href="/topic/' + url_pas(name) + '/sub/' + url_pas(data['sub']) + '">' + str(i + 1) + '. ' + data['sub'] + '</a></h2><table id="toron"><tbody><tr><td id="toroncolorgreen"><a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + topic_data[0]['date'] + '</span></td></tr><tr><td ' + block + '>' + indata + '</td></tr></tbody></table><br>'
  1446. i += 1
  1447. else:
  1448. div += '</div>'
  1449. conn.close()
  1450. return(template('topic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], plus = div, sub = '합의'))
  1451. @route('/topic/<name:path>', method=['POST', 'GET'])
  1452. def topic_list(name = None):
  1453. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1454. curs = conn.cursor(pymysql.cursors.DictCursor)
  1455. if(request.method == 'POST'):
  1456. conn.close()
  1457. return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(request.forms.topic)))
  1458. else:
  1459. div = '<div>'
  1460. j = 1
  1461. curs.execute("select * from rd where title = '" + db_pas(name) + "' order by date asc")
  1462. rows = curs.fetchall()
  1463. for data in rows:
  1464. curs.execute("select * from topic where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1' order by sub asc")
  1465. aa = curs.fetchall()
  1466. indata = namumark(name, aa[0]['data'])
  1467. if(aa[0]['block'] == 'O'):
  1468. indata = '<br>'
  1469. block = 'id="block"'
  1470. else:
  1471. block = ''
  1472. ip = ip_pas(aa[0]['ip'], 1)
  1473. curs.execute("select * from stop where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and close = 'O'")
  1474. row = curs.fetchall()
  1475. if(not row):
  1476. div += '<h2><a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '">' + str(j) + '. ' + data['sub'] + '</a></h2><table id="toron"><tbody><tr><td id="toroncolorgreen"><a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + aa[0]['date'] + '</span></td></tr><tr><td ' + block + '>' + indata + '</td></tr></tbody></table><br>'
  1477. j += 1
  1478. else:
  1479. div += '</div>'
  1480. conn.close()
  1481. return(template('topic', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], plus = div, list = 1, sub = '토론 목록'))
  1482. @route('/login', method=['POST', 'GET'])
  1483. def login():
  1484. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1485. curs = conn.cursor(pymysql.cursors.DictCursor)
  1486. session = request.environ.get('beaker.session')
  1487. ip = ip_check()
  1488. ban = ban_check(ip)
  1489. if(request.method == 'POST'):
  1490. if(ban == 1):
  1491. conn.close()
  1492. return(redirect('/ban'))
  1493. else:
  1494. curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
  1495. user = curs.fetchall()
  1496. if(user):
  1497. if(session.get('Now') == True):
  1498. conn.close()
  1499. return(redirect('/error/11'))
  1500. elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))):
  1501. session['Now'] = True
  1502. session['DREAMER'] = request.forms.id
  1503. curs.execute("select * from custom where user = '" + db_pas(request.forms.id) + "'")
  1504. css_data = curs.fetchall()
  1505. if(css_data):
  1506. session['Daydream'] = css_data[0]['css']
  1507. else:
  1508. session['Daydream'] = ''
  1509. curs.execute("insert into login (user, ip, today) value ('" + db_pas(request.forms.id) + "', '" + db_pas(ip) + "', '" + db_pas(get_time()) + "')")
  1510. conn.commit()
  1511. conn.close()
  1512. return(redirect('/user'))
  1513. else:
  1514. conn.close()
  1515. return(redirect('/error/13'))
  1516. else:
  1517. conn.close()
  1518. return(redirect('/error/12'))
  1519. else:
  1520. if(ban == 1):
  1521. conn.close()
  1522. return(redirect('/ban'))
  1523. else:
  1524. if(session.get('Now') == True):
  1525. conn.close()
  1526. return(redirect('/error/11'))
  1527. else:
  1528. conn.close()
  1529. return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인', enter = '로그인', logo = set_data['name']))
  1530. @route('/change', method=['POST', 'GET'])
  1531. def change_password():
  1532. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1533. curs = conn.cursor(pymysql.cursors.DictCursor)
  1534. ip = ip_check()
  1535. ban = ban_check(ip)
  1536. if(request.method == 'POST'):
  1537. if(request.forms.pw2 == request.forms.pw3):
  1538. if(ban == 1):
  1539. conn.close()
  1540. return(redirect('/ban'))
  1541. else:
  1542. curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
  1543. user = curs.fetchall()
  1544. if(user):
  1545. if(not re.search('(\.|:)', ip)):
  1546. conn.close()
  1547. return(redirect('/logout'))
  1548. elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))):
  1549. hashed = bcrypt.hashpw(bytes(request.forms.pw2, 'utf-8'), bcrypt.gensalt())
  1550. curs.execute("update user set pw = '" + db_pas(hashed.decode()) + "' where id = '" + db_pas(request.forms.id) + "'")
  1551. conn.commit()
  1552. conn.close()
  1553. return(redirect('/login'))
  1554. else:
  1555. conn.close()
  1556. return(redirect('/error/10'))
  1557. else:
  1558. conn.close()
  1559. return(redirect('/error/9'))
  1560. else:
  1561. conn.close()
  1562. return(redirect('/error/20'))
  1563. else:
  1564. if(ban == 1):
  1565. conn.close()
  1566. return(redirect('/ban'))
  1567. else:
  1568. if(not re.search('(\.|:)', ip)):
  1569. conn.close()
  1570. return(redirect('/logout'))
  1571. else:
  1572. conn.close()
  1573. return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '비밀번호 변경', enter = '변경', logo = set_data['name']))
  1574. @route('/check/<name:path>')
  1575. def user_check(name = None):
  1576. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1577. curs = conn.cursor(pymysql.cursors.DictCursor)
  1578. curs.execute("select * from user where id = '" + db_pas(name) + "'")
  1579. user = curs.fetchall()
  1580. if(user and not user[0]['acl'] == 'user'):
  1581. conn.close()
  1582. return(redirect('/error/4'))
  1583. else:
  1584. if(admin_check(4) == 1):
  1585. m = re.search('^(?:[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}?)$', name)
  1586. if(m):
  1587. curs.execute("select * from login where ip = '" + db_pas(name) + "' order by today desc")
  1588. row = curs.fetchall()
  1589. if(row):
  1590. c = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">이름</td><td style="text-align: center;width:33.33%;">아이피</td><td style="text-align: center;width:33.33%;">언제</td></tr>'
  1591. for data in row:
  1592. c += '<tr><td style="text-align: center;width:33.33%;">' + data['user'] + '</td><td style="text-align: center;width:33.33%;">' + data['ip'] + '</td><td style="text-align: center;width:33.33%;">' + data['today'] + '</td></tr>'
  1593. else:
  1594. c += '</tbody></table></div>'
  1595. else:
  1596. c = 'None'
  1597. conn.close()
  1598. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '다중 검사', logo = set_data['name'], data = c))
  1599. else:
  1600. curs.execute("select * from login where user = '" + db_pas(name) + "' order by today desc")
  1601. row = curs.fetchall()
  1602. if(row):
  1603. c = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">이름</td><td style="text-align: center;width:33.33%;">아이피</td><td style="text-align: center;width:33.33%;">언제</td></tr>'
  1604. for data in row:
  1605. c += '<tr><td style="text-align: center;width:33.33%;">' + data['user'] + '</td><td style="text-align: center;width:33.33%;">' + data['ip'] + '</td><td style="text-align: center;width:33.33%;">' + data['today'] + '</td></tr>'
  1606. else:
  1607. c += '</tbody></table></div>'
  1608. else:
  1609. c = 'None'
  1610. conn.close()
  1611. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '다중 검사', logo = set_data['name'], data = c))
  1612. else:
  1613. conn.close()
  1614. return(redirect('/error/3'))
  1615. @route('/register', method=['POST', 'GET'])
  1616. def register():
  1617. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1618. curs = conn.cursor(pymysql.cursors.DictCursor)
  1619. ip = ip_check()
  1620. ban = ban_check(ip)
  1621. if(request.method == 'POST'):
  1622. if(request.forms.pw == request.forms.pw2):
  1623. if(ban == 1):
  1624. conn.close()
  1625. return(redirect('/ban'))
  1626. else:
  1627. m = re.search('(?:[^A-Za-zㄱ-힣0-9 ])', request.forms.id)
  1628. if(m):
  1629. conn.close()
  1630. return(redirect('/error/8'))
  1631. else:
  1632. if(len(request.forms.id) > 20):
  1633. conn.close()
  1634. return(redirect('/error/7'))
  1635. else:
  1636. curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
  1637. rows = curs.fetchall()
  1638. if(rows):
  1639. conn.close()
  1640. return(redirect('/error/6'))
  1641. else:
  1642. hashed = bcrypt.hashpw(bytes(request.forms.pw, 'utf-8'), bcrypt.gensalt())
  1643. curs.execute("select id from user limit 1")
  1644. user_ex = curs.fetchall()
  1645. if(not user_ex):
  1646. curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'owner')")
  1647. else:
  1648. curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'user')")
  1649. conn.commit()
  1650. conn.close()
  1651. return(redirect('/login'))
  1652. else:
  1653. conn.close()
  1654. return(redirect('/error/20'))
  1655. else:
  1656. if(ban == 1):
  1657. conn.close()
  1658. return(redirect('/ban'))
  1659. else:
  1660. conn.close()
  1661. return(template('login', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '회원가입', enter = '회원가입', logo = set_data['name']))
  1662. @route('/logout')
  1663. def logout():
  1664. session = request.environ.get('beaker.session')
  1665. session['Now'] = False
  1666. session.pop('DREAMER', None)
  1667. return(redirect('/user'))
  1668. @route('/ban/<name:path>', method=['POST', 'GET'])
  1669. def user_ban(name = None):
  1670. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1671. curs = conn.cursor(pymysql.cursors.DictCursor)
  1672. curs.execute("select * from user where id = '" + db_pas(name) + "'")
  1673. user = curs.fetchall()
  1674. if(user and not user[0]['acl'] == 'user'):
  1675. conn.close()
  1676. return(redirect('/error/4'))
  1677. else:
  1678. if(request.method == 'POST'):
  1679. if(admin_check(1) == 1):
  1680. ip = ip_check()
  1681. if(not re.search("[0-9]{4}-[0-9]{2}-[0-9]{2}", request.forms.end)):
  1682. end = ''
  1683. else:
  1684. end = request.forms.end
  1685. curs.execute("select * from ban where block = '" + db_pas(name) + "'")
  1686. row = curs.fetchall()
  1687. if(row):
  1688. rb_plus(name, '해제', get_time(), ip, '')
  1689. curs.execute("delete from ban where block = '" + db_pas(name) + "'")
  1690. else:
  1691. b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name)
  1692. if(b):
  1693. rb_plus(name, end, get_time(), ip, request.forms.why)
  1694. curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', 'O')")
  1695. else:
  1696. rb_plus(name, end, get_time(), ip, request.forms.why)
  1697. curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', '')")
  1698. conn.commit()
  1699. conn.close()
  1700. return(redirect('/ban/' + url_pas(name)))
  1701. else:
  1702. conn.close()
  1703. return(redirect('/error/3'))
  1704. else:
  1705. if(admin_check(1) == 1):
  1706. curs.execute("select * from ban where block = '" + db_pas(name) + "'")
  1707. row = curs.fetchall()
  1708. if(row):
  1709. now = '차단 해제'
  1710. else:
  1711. b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name)
  1712. if(b):
  1713. now = '대역 차단'
  1714. else:
  1715. now = '차단'
  1716. conn.close()
  1717. return(template('ban', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], now = now, today = get_time(), sub = '차단'))
  1718. else:
  1719. conn.close()
  1720. return(redirect('/error/3'))
  1721. @route('/acl/<name:path>', method=['POST', 'GET'])
  1722. def acl(name = None):
  1723. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1724. curs = conn.cursor(pymysql.cursors.DictCursor)
  1725. if(request.method == 'POST'):
  1726. if(admin_check(5) == 1):
  1727. curs.execute("select acl from data where title = '" + db_pas(name) + "'")
  1728. row = curs.fetchall()
  1729. if(row):
  1730. if(request.forms.select == 'admin'):
  1731. curs.execute("update data set acl = 'admin' where title = '" + db_pas(name) + "'")
  1732. elif(request.forms.select == 'user'):
  1733. curs.execute("update data set acl = 'user' where title = '" + db_pas(name) + "'")
  1734. else:
  1735. curs.execute("update data set acl = '' where title = '" + db_pas(name) + "'")
  1736. conn.commit()
  1737. conn.close()
  1738. return(redirect('/w/' + url_pas(name)) )
  1739. else:
  1740. conn.close()
  1741. return(redirect('/error/3'))
  1742. else:
  1743. if(admin_check(5) == 1):
  1744. curs.execute("select acl from data where title = '" + db_pas(name) + "'")
  1745. row = curs.fetchall()
  1746. if(row):
  1747. if(row[0]['acl'] == 'admin'):
  1748. now = '관리자만'
  1749. elif(row[0]['acl'] == 'user'):
  1750. now = '로그인 이상'
  1751. else:
  1752. now = '일반'
  1753. conn.close()
  1754. return(template('acl', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), logo = set_data['name'], now = '현재 ACL 상태는 ' + now, sub = 'ACL'))
  1755. else:
  1756. conn.close()
  1757. return(redirect('/w/' + url_pas(name)) )
  1758. else:
  1759. conn.close()
  1760. return(redirect('/error/3'))
  1761. @route('/admin/<name:path>', method=['POST', 'GET'])
  1762. def user_admin(name = None):
  1763. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1764. curs = conn.cursor(pymysql.cursors.DictCursor)
  1765. if(request.method == 'POST'):
  1766. if(admin_check(None) == 1):
  1767. curs.execute("select * from user where id = '" + db_pas(name) + "'")
  1768. user = curs.fetchall()
  1769. if(user):
  1770. if(not user[0]['acl'] == 'user'):
  1771. curs.execute("update user set acl = 'user' where id = '" + db_pas(name) + "'")
  1772. else:
  1773. curs.execute("update user set acl = '" + db_pas(request.forms.select) + "' where id = '" + db_pas(name) + "'")
  1774. conn.commit()
  1775. conn.close()
  1776. return(redirect('/'))
  1777. else:
  1778. conn.close()
  1779. return(redirect('/error/5'))
  1780. else:
  1781. conn.close()
  1782. return(redirect('/error/3'))
  1783. else:
  1784. if(admin_check(None) == 1):
  1785. curs.execute("select * from user where id = '" + db_pas(name) + "'")
  1786. user = curs.fetchall()
  1787. if(user):
  1788. if(not user[0]['acl'] == 'user'):
  1789. now = '권한 해제'
  1790. else:
  1791. now = '권한 부여'
  1792. div = ''
  1793. curs.execute('select name from alist order by name asc')
  1794. get_alist = curs.fetchall()
  1795. if(get_alist):
  1796. i = 0
  1797. name_rem = ''
  1798. for data in get_alist:
  1799. if(not name_rem == data['name']):
  1800. name_rem = data['name']
  1801. div += '<option value="' + data['name'] + '" selected="selected">' + data['name'] + '</option>'
  1802. conn.close()
  1803. return(template('admin', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, page = url_pas(name), datalist = div, logo = set_data['name'], now = now, sub = '권한 부여'))
  1804. else:
  1805. conn.close()
  1806. return(redirect('/error/5'))
  1807. else:
  1808. conn.close()
  1809. return(redirect('/error/3'))
  1810. @route('/ban')
  1811. def are_you_ban():
  1812. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1813. curs = conn.cursor(pymysql.cursors.DictCursor)
  1814. ip = ip_check()
  1815. if(ban_check(ip) == 1):
  1816. curs.execute("select * from ban where block = '" + db_pas(ip) + "'")
  1817. rows = curs.fetchall()
  1818. if(rows):
  1819. if(rows[0]['end']):
  1820. end = rows[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why']
  1821. now = re.sub(':', '', get_time())
  1822. now = re.sub('\-', '', now)
  1823. now = int(re.sub(' ', '', now))
  1824. day = re.sub('\-', '', rows[0]['end'])
  1825. if(now >= int(day + '000000')):
  1826. curs.execute("delete from ban where block = '" + db_pas(ip) + "'")
  1827. conn.commit()
  1828. end = '차단이 풀렸습니다. 다시 시도 해 보세요.'
  1829. else:
  1830. end = '영구 차단 상태 입니다. / 사유 : ' + rows[0]['why']
  1831. else:
  1832. b = re.search("^([0-9](?:[0-9]?[0-9]?)\.[0-9](?:[0-9]?[0-9]?))", ip)
  1833. if(b):
  1834. results = b.groups()
  1835. curs.execute("select * from ban where block = '" + db_pas(results[0]) + "' and band = 'O'")
  1836. row = curs.fetchall()
  1837. if(row):
  1838. if(row[0]['end']):
  1839. end = row[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why']
  1840. now = re.sub(':', '', get_time())
  1841. now = re.sub('\-', '', now)
  1842. now = int(re.sub(' ', '', now))
  1843. day = re.sub('\-', '', row[0]['end'])
  1844. if(now >= int(day + '000000')):
  1845. curs.execute("delete from ban where block = '" + db_pas(results[0]) + "' and band = 'O'")
  1846. conn.commit()
  1847. end = '차단이 풀렸습니다. 다시 시도 해 보세요.'
  1848. else:
  1849. end = '영구 차단 상태 입니다. / 사유 : ' + row[0]['why']
  1850. else:
  1851. end = '권한이 맞지 않는 상태 입니다.'
  1852. conn.close()
  1853. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = end))
  1854. @route('/w/<name:path>/r/<a:int>/diff/<b:int>')
  1855. def diff_data(name = None, a = None, b = None):
  1856. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1857. curs = conn.cursor(pymysql.cursors.DictCursor)
  1858. curs.execute("select * from history where id = '" + db_pas(str(a)) + "' and title = '" + db_pas(name) + "'")
  1859. a_raw_data = curs.fetchall()
  1860. if(a_raw_data):
  1861. curs.execute("select * from history where id = '" + db_pas(str(b)) + "' and title = '" + db_pas(name) + "'")
  1862. b_raw_data = curs.fetchall()
  1863. if(b_raw_data):
  1864. a_data = re.sub('<', '&lt;', a_raw_data[0]['data'])
  1865. a_data = re.sub('>', '&gt;', a_data)
  1866. a_data = re.sub('"', '&quot;', a_data)
  1867. b_data = re.sub('<', '&lt;', b_raw_data[0]['data'])
  1868. b_data = re.sub('>', '&gt;', b_data)
  1869. b_data = re.sub('"', '&quot;', b_data)
  1870. diff_data = difflib.SequenceMatcher(None, a_data, b_data)
  1871. result = diff(diff_data)
  1872. result = '<pre>' + result + '</pre>'
  1873. conn.close()
  1874. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], data = result, sub = '비교', page = url_pas(name)))
  1875. else:
  1876. conn.close()
  1877. return(redirect('/history/' + url_pas(name)))
  1878. else:
  1879. conn.close()
  1880. return(redirect('/history/' + url_pas(name)))
  1881. @route('/down/<name:path>')
  1882. def down(name = None):
  1883. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1884. curs = conn.cursor(pymysql.cursors.DictCursor)
  1885. curs.execute("select title from data where title like '%" + db_pas(name) + "/%'")
  1886. under = curs.fetchall()
  1887. div = ''
  1888. i = 0
  1889. for data in under:
  1890. div += '<li>' + str(i + 1) + '. <a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a></li>'
  1891. i += 1
  1892. conn.close()
  1893. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], data = div, sub = '하위 문서', page = url_pas(name)))
  1894. @route('/w/<name:path>')
  1895. @route('/w/<name:path>/from/<redirect:path>')
  1896. def read_view(name = None, redirect = None):
  1897. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  1898. curs = conn.cursor(pymysql.cursors.DictCursor)
  1899. data_none = False
  1900. sub = None
  1901. acl = ''
  1902. div = ''
  1903. i = 0
  1904. curs.execute("select sub from rd where title = '" + db_pas(name) + "' order by date asc")
  1905. rows = curs.fetchall()
  1906. while(True):
  1907. try:
  1908. curs.execute("select title from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(rows[i]['sub']) + "' and close = 'O'")
  1909. row = curs.fetchall()
  1910. if(not row):
  1911. topic = "open"
  1912. break
  1913. i += 1
  1914. except:
  1915. topic = ""
  1916. break
  1917. curs.execute("select title from data where title like '%" + db_pas(name) + "/%'")
  1918. under = curs.fetchall()
  1919. if(under):
  1920. down = True
  1921. else:
  1922. down = False
  1923. m = re.search("^(.*)\/(.*)$", name)
  1924. if(m):
  1925. uppage = m.groups()[0]
  1926. else:
  1927. uppage = False
  1928. if(admin_check(5) == 1):
  1929. admin_memu = 'ACL'
  1930. else:
  1931. admin_memu = ''
  1932. if(re.search("^분류:", name)):
  1933. curs.execute("select * from cat where title = '" + db_pas(name) + "' order by cat asc")
  1934. rows = curs.fetchall()
  1935. if(rows):
  1936. div = '<h2>분류</h2>'
  1937. i = 0
  1938. for data in rows:
  1939. curs.execute("select * from data where title = '" + db_pas(data['cat']) + "'")
  1940. row = curs.fetchall()
  1941. if(row):
  1942. aa = row[0]['data']
  1943. aa = namumark('', aa)
  1944. bb = re.search('<div style="width:100%;border: 1px solid #777;padding: 5px;margin-top: 1em;">분류:((?:(?!<\/div>).)*)<\/div>', aa)
  1945. if(bb):
  1946. cc = bb.groups()
  1947. mm = re.search("^분류:(.*)", name)
  1948. if(mm):
  1949. ee = mm.groups()
  1950. if(re.search("<a (class=\"not_thing\")? href=\"\/w\/" + url_pas(name) + "\">" + ee[0] + "<\/a>", cc[0])):
  1951. div += '<li><a href="/w/' + url_pas(data['cat']) + '">' + data['cat'] + '</a></li>'
  1952. i += 1
  1953. else:
  1954. curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'")
  1955. conn.commit()
  1956. i += 1
  1957. else:
  1958. curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'")
  1959. conn.commit()
  1960. i += 1
  1961. else:
  1962. curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'")
  1963. conn.commit()
  1964. i += 1
  1965. else:
  1966. curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = '" + db_pas(data['cat']) + "'")
  1967. conn.commit()
  1968. i += 1
  1969. curs.execute("select * from data where title = '" + db_pas(name) + "'")
  1970. rows = curs.fetchall()
  1971. if(rows):
  1972. if(rows[0]['acl'] == 'admin'):
  1973. acl = '(관리자)'
  1974. elif(rows[0]['acl'] == 'user'):
  1975. acl = '(로그인)'
  1976. elsedata = rows[0]['data']
  1977. else:
  1978. data_none = True
  1979. elsedata = 'None'
  1980. m = re.search("^사용자:([^/]*)", name)
  1981. if(m):
  1982. g = m.groups()
  1983. curs.execute("select acl from user where id = '" + db_pas(g[0]) + "'")
  1984. test = curs.fetchall()
  1985. if(test):
  1986. if(not test[0]['acl'] == 'user'):
  1987. acl = '(관리자)'
  1988. curs.execute("select block from ban where block = '" + db_pas(g[0]) + "'")
  1989. user = curs.fetchall()
  1990. if(user):
  1991. sub = '차단'
  1992. if(redirect):
  1993. elsedata = re.sub("^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)", " * [[\g<in>]] 문서로 넘겨주기", elsedata)
  1994. enddata = namumark(name, elsedata)
  1995. conn.close()
  1996. return(template('read', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = name, logo = set_data['name'], page = url_pas(name), data = enddata + div, uppage = uppage, acl = acl, topic = topic, redirect = redirect, admin = admin_memu, data_none = data_none, sub = sub, down = down))
  1997. @route('/user/<name:path>/topic')
  1998. @route('/user/<name:path>/topic/<num:int>')
  1999. def user_topic_list(name = None, num = 1):
  2000. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2001. curs = conn.cursor(pymysql.cursors.DictCursor)
  2002. if(num * 50 <= 0):
  2003. v = 50
  2004. else:
  2005. v = num * 50
  2006. i = v - 50
  2007. ydmin = admin_check(1)
  2008. div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">토론명</td><td style="text-align: center;width:33.33%;">작성자</td><td style="text-align: center;width:33.33%;">시간</td></tr>'
  2009. curs.execute("select title, id, sub, ip, date from topic where ip = '" + db_pas(name) + "' order by date desc limit " + str(i) + ", " + str(v))
  2010. rows = curs.fetchall()
  2011. if(rows):
  2012. for data in rows:
  2013. title = re.sub('<', '&lt;', data['title'])
  2014. title = re.sub('>', '&gt;', title)
  2015. title = re.sub('"', '&quot;', title)
  2016. sub = re.sub('<', '&lt;', data['sub'])
  2017. sub = re.sub('>', '&gt;', sub)
  2018. sub = re.sub('"', '&quot;', sub)
  2019. if(ydmin == 1):
  2020. curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
  2021. row = curs.fetchall()
  2022. if(row):
  2023. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
  2024. else:
  2025. ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
  2026. else:
  2027. ban = ''
  2028. ip = ip_pas(data['ip'], 1)
  2029. div += '<tr><td style="text-align: center;width:33.33%;"><a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '#' + data['id'] + '">' + title + '</a> (' + sub + ') (#' + data['id'] + ') </td><td style="text-align: center;width:33.33%;">' + ip + ban + '</td><td style="text-align: center;width:33.33%;">' + data['date'] + '</td></tr>'
  2030. else:
  2031. div += '</tbody></table></div>'
  2032. else:
  2033. div = 'None<br>'
  2034. div += '<br><a href="/user/' + url_pas(name) + '/topic/' + str(num - 1) + '">(이전)</a> <a href="/user/' + url_pas(name) + '/topic/' + str(num + 1) + '">(이후)</a>'
  2035. curs.execute("select end, why from ban where block = '" + db_pas(name) + "'")
  2036. ban_it = curs.fetchall()
  2037. if(ban_it):
  2038. sub = '차단'
  2039. else:
  2040. sub = None
  2041. conn.close()
  2042. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], data = div, title = '사용자 토론 기록', sub = sub))
  2043. @route('/user')
  2044. def user_info():
  2045. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2046. curs = conn.cursor(pymysql.cursors.DictCursor)
  2047. ip = ip_check()
  2048. raw_ip = ip
  2049. curs.execute("select * from user where id = '" + db_pas(ip) + "'")
  2050. rows = curs.fetchall()
  2051. if(ban_check(ip) == 0):
  2052. if(rows):
  2053. if(not rows[0]['acl'] == 'user'):
  2054. acl = rows[0]['acl']
  2055. else:
  2056. acl = '로그인'
  2057. else:
  2058. acl = '일반'
  2059. else:
  2060. acl = '차단'
  2061. ip = ip_pas(ip, 2)
  2062. conn.close()
  2063. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '사용자 메뉴', logo = set_data['name'], data = ip + '<br><br><span>권한 상태 : ' + acl + '<h2>로그인 관련</h2><li><a href="/login">로그인</a></li><li><a href="/logout">로그아웃</a></li><li><a href="/register">회원가입</a></li><h2>기타</h2><li><a href="/change">비밀번호 변경</a></li><li><a href="/count">기여 횟수</a></li><li><a href="/record/' + raw_ip + '">기여 목록</a></li><li><a href="/custom">커스텀 CSS</a></li>'))
  2064. @route('/custom', method=['GET', 'POST'])
  2065. def custom_css():
  2066. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2067. curs = conn.cursor(pymysql.cursors.DictCursor)
  2068. session = request.environ.get('beaker.session')
  2069. ip = ip_check()
  2070. if(request.method == 'POST'):
  2071. if(not re.search('(\.|:)', ip)):
  2072. curs.execute("select * from custom where user = '" + db_pas(ip) + "'")
  2073. css_data = curs.fetchall()
  2074. if(css_data):
  2075. curs.execute("update custom set css = '" + db_pas(request.forms.content) + "' where user = '" + db_pas(ip) + "'")
  2076. else:
  2077. curs.execute("insert into custom (user, css) value ('" + db_pas(ip) + "', '" + db_pas(request.forms.content) + "')")
  2078. conn.commit()
  2079. session['Daydream'] = request.forms.content
  2080. conn.close()
  2081. return(redirect('/user'))
  2082. else:
  2083. if(not re.search('(\.|:)', ip)):
  2084. start = ''
  2085. curs.execute("select * from custom where user = '" + db_pas(ip) + "'")
  2086. css_data = curs.fetchall()
  2087. if(css_data):
  2088. data = css_data[0]['css']
  2089. else:
  2090. data = ''
  2091. else:
  2092. start = '<span>비 로그인의 경우에는 로그인하면 날아갑니다.</span><br><br>'
  2093. try:
  2094. data = session['Daydream']
  2095. except:
  2096. data = ''
  2097. conn.close()
  2098. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '커스텀 CSS', logo = set_data['name'], data = start + '<form id="usrform" name="f1" method="POST" action="/custom"><textarea rows="30" cols="100" name="content" form="usrform">' + data + '</textarea><br><br><div class="form-actions"><button class="btn btn-primary" type="submit">저장</button></div></form>'))
  2099. @route('/upload', method=['GET', 'POST'])
  2100. def upload():
  2101. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2102. curs = conn.cursor(pymysql.cursors.DictCursor)
  2103. ip = ip_check()
  2104. ban = ban_check(ip)
  2105. if(ban == 1):
  2106. conn.close()
  2107. return(redirect('/ban'))
  2108. elif(request.method == 'POST'):
  2109. if(request.files.file):
  2110. comp = re.compile("^(.+)(\.(?:jpg|gif|png|jpeg))$", re.I)
  2111. exist = comp.search(request.files.file.filename)
  2112. if(exist):
  2113. if((int(set_data['upload']) * 1024 * 1024) < request.content_length):
  2114. conn.close()
  2115. return(redirect('/error/17'))
  2116. else:
  2117. file_info = exist.groups()
  2118. if(not request.forms.data):
  2119. file_data = file_info[0] + file_info[1]
  2120. file_name = sha224(file_info[0]) + file_info[1]
  2121. else:
  2122. file_data = request.forms.data + file_info[1]
  2123. file_name = sha224(request.forms.data) + file_info[1]
  2124. if(os.path.exists(os.path.join('image', file_name))):
  2125. conn.close()
  2126. return(redirect('/error/16'))
  2127. else:
  2128. request.files.file.save(os.path.join('image', file_name))
  2129. if(not request.forms.lice):
  2130. lice = ip + ' 업로드'
  2131. else:
  2132. lice = '라이선스 : ' + request.forms.lice
  2133. curs.execute("select title from data where title = '" + db_pas('파일:' + file_data) + "'")
  2134. exist_db = curs.fetchall()
  2135. if(not exist_db):
  2136. curs.execute("insert into data (title, data, acl) value ('" + db_pas('파일:' + file_data) + "', '" + db_pas('[[파일:' + file_data + ']][br][br]{{{[[파일:' + file_data + ']]}}}[br][br]' + lice) + "', '')")
  2137. conn.commit()
  2138. history_plus('파일:' + file_data, '[[파일:' + file_data + ']][br][br]{{{[[파일:' + file_data + ']]}}}', get_time(), ip, '파일:' + file_data + ' 업로드', '0')
  2139. conn.close()
  2140. return(redirect('/w/' + url_pas('파일:' + file_data)))
  2141. else:
  2142. conn.close()
  2143. return(redirect('/error/14'))
  2144. else:
  2145. conn.close()
  2146. return(redirect('/error/14'))
  2147. else:
  2148. conn.close()
  2149. return(template('upload', custom = custom_css_user(), license = set_data['license'], login = login_check(), logo = set_data['name'], title = '업로드', number = set_data['upload']))
  2150. @route('/count')
  2151. def count_edit():
  2152. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2153. curs = conn.cursor(pymysql.cursors.DictCursor)
  2154. curs.execute("select count(title) from history where ip = '" + ip_check() + "'")
  2155. count = curs.fetchall()
  2156. if(count):
  2157. conn.close()
  2158. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기여 횟수', logo = set_data['name'], data = "기여 횟수 : " + str(count[0]["count(title)"])))
  2159. else:
  2160. conn.close()
  2161. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '기여 횟수', logo = set_data['name'], data = "기여 횟수 : 0"))
  2162. @route('/random')
  2163. def random():
  2164. conn = pymysql.connect(user = set_data['user'], password = set_data['pw'], charset = 'utf8mb4', db = set_data['db'])
  2165. curs = conn.cursor(pymysql.cursors.DictCursor)
  2166. curs.execute("select title from data order by rand() limit 1")
  2167. rows = curs.fetchall()
  2168. if(rows):
  2169. conn.close()
  2170. return(redirect('/w/' + url_pas(rows[0]['title'])))
  2171. else:
  2172. conn.close()
  2173. return(redirect('/'))
  2174. @route('/views/<name:path>')
  2175. def views(name = None):
  2176. if(re.search('\/', name)):
  2177. m = re.search('^(.*)\/(.*)$', name)
  2178. if(m):
  2179. n = m.groups()
  2180. plus = '/' + n[0]
  2181. rename = n[1]
  2182. else:
  2183. plus = ''
  2184. rename = name
  2185. else:
  2186. plus = ''
  2187. rename = name
  2188. return(static_file(rename, root = './views' + plus))
  2189. @route('/error/<num:int>')
  2190. def error_test(num = None):
  2191. if(num == 1):
  2192. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '비 로그인 상태 입니다.'))
  2193. elif(num == 2):
  2194. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '이 계정이 없습니다.'))
  2195. elif(num == 3):
  2196. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '권한이 모자랍니다.'))
  2197. elif(num == 4):
  2198. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '권한 오류', logo = set_data['name'], data = '관리자는 차단, 검사 할 수 없습니다.'))
  2199. elif(num == 5):
  2200. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '사용자 오류', logo = set_data['name'], data = '그런 계정이 없습니다.'))
  2201. elif(num == 6):
  2202. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '동일한 아이디의 사용자가 있습니다.'))
  2203. elif(num == 7):
  2204. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '아이디는 20글자보다 짧아야 합니다.'))
  2205. elif(num == 8):
  2206. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '가입 오류', logo = set_data['name'], data = '아이디에는 한글과 알파벳과 공백만 허용 됩니다.'))
  2207. elif(num == 9):
  2208. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '변경 오류', logo = set_data['name'], data = '그런 계정이 없습니다.'))
  2209. elif(num == 10):
  2210. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '변경 오류', logo = set_data['name'], data = '비밀번호가 다릅니다.'))
  2211. elif(num == 11):
  2212. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '이미 로그인 되어 있습니다.'))
  2213. elif(num == 12):
  2214. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '그런 계정이 없습니다.'))
  2215. elif(num == 13):
  2216. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '로그인 오류', logo = set_data['name'], data = '비밀번호가 다릅니다.'))
  2217. elif(num == 14):
  2218. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = 'jpg, gif, jpeg, png(대 소문자 상관 없음)만 가능 합니다.'))
  2219. elif(num == 15):
  2220. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '편집 오류', logo = set_data['name'], data = '편집 기록은 500자를 넘을 수 없습니다.'))
  2221. elif(num == 16):
  2222. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = '동일한 이름의 파일이 있습니다.'))
  2223. elif(num == 17):
  2224. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '업로드 오류', logo = set_data['name'], data = '파일 용량은 ' + set_data['upload'] + 'MB를 넘길 수 없습니다.'))
  2225. elif(num == 18):
  2226. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '편집 오류', logo = set_data['name'], data = '내용이 원래 문서와 동일 합니다.'))
  2227. elif(num == 19):
  2228. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '이동 오류', logo = set_data['name'], data = '이동 하려는 곳에 문서가 이미 있습니다.'))
  2229. elif(num == 20):
  2230. return(template('other', custom = custom_css_user(), license = set_data['license'], login = login_check(), title = '비밀번호 오류', logo = set_data['name'], data = '재 확인이랑 비밀번호가 다릅니다.'))
  2231. else:
  2232. return(redirect('/'))
  2233. @error(404)
  2234. def error_404(error):
  2235. return(redirect('/w/' + url_pas(set_data['frontpage'])))
  2236. run(app = app, server='tornado', host = '0.0.0.0', port = int(set_data['port']))