| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670267126722673267426752676267726782679268026812682268326842685268626872688268926902691269226932694269526962697269826992700270127022703270427052706270727082709271027112712271327142715271627172718271927202721272227232724272527262727272827292730273127322733273427352736273727382739274027412742274327442745274627472748274927502751275227532754275527562757275827592760276127622763276427652766276727682769277027712772277327742775277627772778277927802781278227832784278527862787278827892790279127922793279427952796279727982799280028012802280328042805280628072808280928102811281228132814281528162817281828192820282128222823282428252826282728282829283028312832283328342835283628372838283928402841284228432844284528462847284828492850285128522853285428552856285728582859286028612862286328642865286628672868286928702871287228732874287528762877287828792880288128822883288428852886288728882889289028912892289328942895289628972898289929002901290229032904290529062907290829092910291129122913291429152916291729182919292029212922292329242925292629272928292929302931293229332934293529362937293829392940294129422943294429452946294729482949295029512952295329542955295629572958295929602961296229632964296529662967296829692970297129722973297429752976297729782979298029812982298329842985298629872988298929902991299229932994299529962997299829993000300130023003300430053006300730083009301030113012301330143015301630173018301930203021302230233024302530263027302830293030303130323033303430353036303730383039304030413042304330443045304630473048304930503051305230533054305530563057305830593060306130623063306430653066306730683069307030713072307330743075307630773078307930803081308230833084308530863087308830893090309130923093309430953096309730983099310031013102310331043105310631073108310931103111311231133114311531163117311831193120312131223123312431253126312731283129313031313132313331343135313631373138313931403141314231433144314531463147314831493150315131523153315431553156315731583159316031613162316331643165316631673168316931703171317231733174317531763177317831793180318131823183318431853186318731883189319031913192319331943195319631973198319932003201320232033204320532063207320832093210321132123213321432153216321732183219322032213222322332243225322632273228322932303231323232333234323532363237323832393240324132423243324432453246324732483249325032513252325332543255325632573258325932603261326232633264326532663267326832693270327132723273327432753276327732783279328032813282328332843285328632873288328932903291329232933294329532963297329832993300330133023303330433053306330733083309331033113312331333143315331633173318331933203321332233233324332533263327332833293330333133323333333433353336333733383339334033413342334333443345334633473348334933503351335233533354335533563357335833593360336133623363336433653366336733683369337033713372337333743375337633773378337933803381338233833384338533863387338833893390339133923393339433953396339733983399340034013402340334043405340634073408340934103411341234133414341534163417341834193420342134223423342434253426342734283429343034313432343334343435343634373438343934403441344234433444344534463447344834493450345134523453345434553456345734583459346034613462346334643465346634673468346934703471347234733474347534763477347834793480348134823483348434853486348734883489349034913492349334943495349634973498349935003501350235033504350535063507350835093510351135123513351435153516351735183519352035213522352335243525352635273528352935303531353235333534353535363537353835393540354135423543354435453546354735483549355035513552355335543555355635573558355935603561356235633564356535663567356835693570357135723573357435753576357735783579358035813582358335843585358635873588358935903591359235933594359535963597359835993600360136023603360436053606360736083609361036113612361336143615361636173618361936203621362236233624362536263627362836293630363136323633363436353636363736383639364036413642364336443645364636473648364936503651365236533654365536563657365836593660366136623663366436653666366736683669367036713672367336743675367636773678367936803681368236833684368536863687368836893690369136923693369436953696369736983699370037013702370337043705370637073708370937103711371237133714371537163717371837193720372137223723372437253726372737283729373037313732373337343735373637373738373937403741374237433744374537463747374837493750375137523753375437553756375737583759376037613762376337643765376637673768376937703771377237733774377537763777377837793780378137823783378437853786378737883789379037913792379337943795379637973798379938003801380238033804380538063807380838093810381138123813381438153816381738183819382038213822382338243825382638273828382938303831383238333834383538363837383838393840384138423843384438453846384738483849385038513852385338543855385638573858385938603861386238633864386538663867386838693870387138723873387438753876387738783879388038813882388338843885388638873888388938903891389238933894389538963897389838993900390139023903390439053906390739083909391039113912391339143915391639173918391939203921 |
- from bottle import route, run, template, error, request, static_file, app, BaseRequest
- from bottle.ext import beaker
- import bcrypt
- import os
- import difflib
- import hashlib
- import json
- import pymysql
- json_data = open('set.json').read()
- set_data = json.loads(json_data)
- session_opts = {
- 'session.type': 'file',
- 'session.data_dir': './app_session/',
- 'session.auto': True
- }
- app = beaker.middleware.SessionMiddleware(app(), session_opts)
- def redirect(data):
- return('<meta http-equiv="refresh" content="0;url=' + data + '" />')
-
- from func import *
- from mark import *
-
- db_pas = pymysql.escape_string
- r_ver = '2.1.5'
- @route('/setup', method=['GET', 'POST'])
- def setup():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4'
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
-
- if(request.method == 'POST'):
- if(not request.forms.owner == set_data['pw']):
- conn.close()
- return(redirect('/error/3'))
- else:
- try:
- curs.execute("use " + set_data['db'])
- except:
- curs.execute("create database " + set_data['db'])
- curs.execute("use " + set_data['db'])
- curs.execute("alter database " + set_data['db'] + " character set = utf8mb4 collate = utf8mb4_unicode_ci")
-
- curs.execute("create table data(title text, data longtext, acl text)")
- curs.execute("create table history(id text, title text, data longtext, date text, ip text, send text, leng text)")
- curs.execute("create table rd(title text, sub text, date text)")
- curs.execute("create table user(id text, pw text, acl text)")
- curs.execute("create table ban(block text, end text, why text, band text)")
- curs.execute("create table topic(id text, title text, sub text, data longtext, date text, ip text, block text, top text)")
- curs.execute("create table stop(title text, sub text, close text)")
- curs.execute("create table rb(block text, end text, today text, blocker text, why text)")
- curs.execute("create table login(user text, ip text, today text)")
- curs.execute("create table back(title text, link text, type text)")
- curs.execute("create table cat(title text, cat text)")
- curs.execute("create table hidhi(title text, re text)")
- curs.execute("create table agreedis(title text, sub text)")
- curs.execute("create table custom(user text, css longtext)")
- curs.execute("create table other(name text, data text)")
- curs.execute("create table alist(name text, acl text)")
- conn.close()
- return(redirect('/'))
- else:
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = '<form method="POST"> \
- <input name="owner" type="password"> <button class="btn btn-primary" type="submit">저장</button> \
- </form>',
- title = '오픈나무 설치'
- )
- )
- @route('/image/<name:path>')
- def static(name = None):
- if(os.path.exists(os.path.join('image', name))):
- return(static_file(name, root = 'image'))
- else:
- return(redirect('/'))
- @route('/acllist')
- def acl_list():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- div = '<div>'
- i = 0
- curs.execute("select title, acl from data where acl = 'admin' or acl = 'user' order by acl desc")
- list_data = curs.fetchall()
- if(list_data):
- for data in list_data:
- if(data['acl'] == 'admin'):
- acl = '관리자'
- else:
- acl = '로그인'
- div += '<li>' + str(i + 1) + '. <a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (' + acl + ')</li>'
-
- i += 1
- else:
- div += '</div>'
- else:
- div = ''
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = 'ACL 문서 목록'
- )
- )
-
- @route('/listacl')
- def list_acl():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- div = '<div>'
- i = 0
- curs.execute("select * from alist order by name desc")
- list_data = curs.fetchall()
- if(list_data):
- for data in list_data:
- if(data['acl'] == 'ban'):
- acl = '차단'
- elif(data['acl'] == 'mdel'):
- acl = '많은 문서 삭제'
- elif(data['acl'] == 'toron'):
- acl = '토론 관리'
- elif(data['acl'] == 'check'):
- acl = '사용자 검사'
- elif(data['acl'] == 'acl'):
- acl = '문서 ACL'
- elif(data['acl'] == 'hidel'):
- acl = '역사 숨김'
- elif(data['acl'] == 'owner'):
- acl = '소유자'
-
- div += '<li>' + str(i + 1) + '. <a href="/adminplus/' + url_pas(data['name']) + '">' + data['name'] + '</a> (' + acl + ')</li>'
-
- i += 1
- else:
- div += '<br><a href="/manager/8">(생성)</a></div>'
- else:
- div = '<a href="/manager/8">(생성)</a></div>'
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = 'ACL 목록'
- )
- )
- @route('/adminplus/<name:path>', method=['POST', 'GET'])
- def admin_plus(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(None) == 1):
- if(request.method == 'POST'):
- curs.execute("delete from alist where name = '" + db_pas(name) + "'")
-
- if(request.forms.ban):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'ban')")
- if(request.forms.mdel):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'mdel')")
- if(request.forms.toron):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'toron')")
-
- if(request.forms.check):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'check')")
- if(request.forms.acl):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'acl')")
- if(request.forms.hidel):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'hidel')")
- if(request.forms.owner):
- curs.execute("insert into alist (name, acl) value ('" + db_pas(name) + "', 'owner')")
-
- conn.commit()
- conn.close()
- return(redirect('/adminplus/admin'))
- else:
- curs.execute('select acl from alist where name = "' + db_pas(name) + '"')
- test = curs.fetchall()
-
- data = ''
- exist_list = ['', '', '', '', '', '', '', '', '']
- for go in test:
- if(go['acl'] == 'ban'):
- exist_list[0] = 'checked="checked"'
- elif(go['acl'] == 'mdel'):
- exist_list[1] = 'checked="checked"'
- elif(go['acl'] == 'toron'):
- exist_list[2] = 'checked="checked"'
- elif(go['acl'] == 'check'):
- exist_list[3] = 'checked="checked"'
- elif(go['acl'] == 'acl'):
- exist_list[4] = 'checked="checked"'
- elif(go['acl'] == 'hidel'):
- exist_list[5] = 'checked="checked"'
- elif(go['acl'] == 'owner'):
- exist_list[7] = 'checked="checked"'
- data += '<li><input type="checkbox" name="ban" ' + exist_list[0] + '> 차단</li>'
- data += '<li><input type="checkbox" name="mdel" ' + exist_list[1] + '> 많은 문서 삭제</li>'
- data += '<li><input type="checkbox" name="toron" ' + exist_list[2] + '> 토론 관리</li>'
- data += '<li><input type="checkbox" name="check" ' + exist_list[3] + '> 사용자 검사</li>'
- data += '<li><input type="checkbox" name="acl" ' + exist_list[4] + '> 문서 ACL</li>'
- data += '<li><input type="checkbox" name="hidel" ' + exist_list[5] + '> 역사 숨김</li>'
- data += '<li><input type="checkbox" name="owner" ' + exist_list[7] + '> 소유자</li>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '관리 그룹 추가',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/adminplus/' + url_pas(name) + '">' \
- + data + \
- '<div class="form-actions"> \
- <button class="btn btn-primary" type="submit">저장</button> \
- </div> \
- </form>'
- )
- )
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/adminlist')
- def admin_list():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- i = 1
- div = '<div>'
-
- curs.execute("select * from user where acl = 'admin' or acl = 'owner'")
- user_data = curs.fetchall()
- if(user_data):
- for data in user_data:
- name = ip_pas(data['id'], 2) + ' (' + data['acl'] + ')'
- div += '<li>' + str(i) + '. ' + name + '</li>'
-
- i += 1
- else:
- div += '</div>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '관리자 목록'
- )
- )
- else:
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- title = '관리자 목록'
- )
- )
-
- @route('/recentchanges')
- def recentchanges():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ydmin = admin_check(1)
- zdmin = admin_check(6)
- div = '<div> \
- <table style="width: 100%; text-align: center;"> \
- <tbody> \
- <tr> \
- <td style="width:33.33%;">문서명</td> \
- <td style="width:33.33%;">기여자</td> \
- <td style="width:33.33%;">시간</td> \
- </tr>'
-
- curs.execute("select id, title, date, ip, send, leng from history order by date desc limit 50")
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- if(data['send']):
- if(re.search("^(?: *)$", data['send'])):
- send = '<br>'
- else:
- send = data['send']
- else:
- send = '<br>'
-
- title = data['title']
- title = re.sub('<', '<', title)
- title = re.sub('>', '>', title)
- title = re.sub('"', '"', title)
-
- m = re.search("\+", data['leng'])
- n = re.search("\-", data['leng'])
-
- if(m):
- leng = '<span style="color:green;">' + data['leng'] + '</span>'
- elif(n):
- leng = '<span style="color:red;">' + data['leng'] + '</span>'
- else:
- leng = '<span style="color:gray;">' + data['leng'] + '</span>'
-
- if(ydmin == 1):
- curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
- row = curs.fetchall()
- if(row):
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
- else:
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
- else:
- ban = ''
-
- ip = ip_pas(data['ip'], None)
-
- if((int(data['id']) - 1) == 0):
- revert = ''
- else:
- revert = '<a href="/w/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '/diff/' + data['id'] + '">(비교)</a> <a href="/revert/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '">(되돌리기)</a>'
-
- style = ''
- if(zdmin == 1):
- curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
- row = curs.fetchall()
- if(row):
- ip += ' (숨김)'
- hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(공개)'
- else:
- hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(숨김)'
- else:
- curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
- row = curs.fetchall()
- if(row):
- ip = '숨김'
- hidden = ''
- send = '숨김'
- ban = ''
- style = 'display:none;'
- else:
- hidden = ''
-
- div += '<tr style="' + style + '"> \
- <td> \
- <a href="/w/' + url_pas(data['title']) + '">' + title + '</a> (<a href="/history/' + url_pas(data['title']) + '">' + data['id'] + '판</a>) ' + revert + ' (' + leng + ') \
- </td> \
- <td>' + ip + ban + hidden + '</td> \
- <td>' + data['date'] + '</td> \
- </tr> \
- <tr> \
- <td colspan="3">' + send + '</td> \
- </tr>'
- else:
- div += '</tbody> \
- </table> \
- </div>'
- else:
- div = 'None'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '최근 변경내역'
- )
- )
-
- @route('/history/<name:path>/r/<num:int>/hidden')
- def history_hidden(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(6) == 1):
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- exist = curs.fetchall()
- if(exist):
- curs.execute("delete from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- else:
- curs.execute("insert into hidhi (title, re) value ('" + db_pas(name) + "', '" + db_pas(str(num)) + "')")
-
- conn.commit()
-
- conn.close()
- return(redirect('/history/' + url_pas(name)))
- @route('/record/<name:path>')
- @route('/record/<name:path>/n/<num:int>')
- def user_record(name = None, num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- v = 50
- else:
- v = num * 50
-
- i = v - 50
- ydmin = admin_check(1)
- zdmin = admin_check(6)
- div = '<div> \
- <table style="width: 100%; text-align: center;"> \
- <tbody> \
- <tr> \
- <td style="width:33.33%;">문서명</td> \
- <td style="width:33.33%;">기여자</td> \
- <td style="width:33.33%;">시간</td> \
- </tr>'
-
- curs.execute("select * from history where ip = '" + db_pas(name) + "' order by date desc limit " + str(i) + ", " + str(v))
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- if(data['send']):
- send = data['send']
- send = re.sub('<a href="\/w\/(?P<in>[^"]*)">(?P<out>[^&]*)<\/a>', '<a href="/w/\g<in>">\g<out></a>', send)
- else:
- send = '<br>'
-
- title = data['title']
- title = re.sub('<', '<', title)
- title = re.sub('>', '>', title)
- title = re.sub('"', '"', title)
-
- m = re.search("\+", data['leng'])
- n = re.search("\-", data['leng'])
-
- if(m):
- leng = '<span style="color:green;">' + data['leng'] + '</span>'
- elif(n):
- leng = '<span style="color:red;">' + data['leng'] + '</span>'
- else:
- leng = '<span style="color:gray;">' + data['leng'] + '</span>'
-
- if(ydmin == 1):
- curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
- row = curs.fetchall()
- if(row):
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
- else:
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
- else:
- ban = ''
-
- ip = ip_pas(data['ip'], None)
-
- if((int(data['id']) - 1) == 0):
- revert = ''
- else:
- revert = '<a href="/revert/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '">(되돌리기)</a>'
-
- style = ''
- if(zdmin == 1):
- curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
- row = curs.fetchall()
- if(row):
- ip += ' (숨김)'
- hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(공개)'
- else:
- hidden = ' <a href="/history/' + url_pas(data['title']) + '/r/' + data['id'] + '/hidden">(숨김)'
- else:
- curs.execute("select * from hidhi where title = '" + db_pas(data['title']) + "' and re = '" + db_pas(data['id']) + "'")
- row = curs.fetchall()
- if(row):
- ip = '숨김'
- hidden = ''
- send = '숨김'
- ban = ''
- style = 'display:none;'
- else:
- hidden = ''
-
- div += '<tr style="' + style + '"> \
- <td> \
- <a href="/w/' + url_pas(data['title']) + '">' + title + '</a> (<a href="/history/' + url_pas(data['title']) + '">' + data['id'] + '판</a>) \
- <a href="/w/' + url_pas(data['title']) + '/r/' + str(int(data['id']) - 1) + '/diff/' + data['id'] + '">(비교)</a> ' + revert + ' (' + leng + ') \
- </td> \
- <td>' + ip + ban + hidden + '</td> \
- <td>' + data['date'] + '</td> \
- </tr> \
- <tr> \
- <td colspan="3">' + send + '</td> \
- </tr>'
- else:
- div += '</tbody> \
- </table> \
- </div>'
- else:
- div = 'None \
- <br>'
-
- div += '<br> \
- <a href="/record/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/record/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
-
- curs.execute("select end, why from ban where block = '" + db_pas(name) + "'")
- ban_it = curs.fetchall()
- if(ban_it):
- sub = '차단'
- else:
- sub = None
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '사용자 기록',
- sub = sub
- )
- )
-
- @route('/userlog')
- @route('/userlog/n/<num:int>')
- def user_log(num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- i = 50
- else:
- i = num * 50
-
- j = i - 50
- list_data = ''
- ydmin = admin_check(1)
-
- curs.execute("select * from user limit " + str(j) + ", " + str(i))
- user_list = curs.fetchall()
- if(user_list):
- for data in user_list:
- if(ydmin == 1):
- curs.execute("select * from ban where block = '" + db_pas(data['id']) + "'")
- ban_exist = curs.fetchall()
- if(ban_exist):
- ban_button = ' <a href="/ban/' + url_pas(data['id']) + '">(해제)</a>'
- else:
- ban_button = ' <a href="/ban/' + url_pas(data['id']) + '">(차단)</a>'
- else:
- ban_button = ''
-
- ip = ip_pas(data['id'], None)
-
- list_data += '<li>' + str(j + 1) + '. ' + ip + ban_button + '</li>'
-
- j += 1
- list_data += '<br> \
- <a href="/userlog/n/' + str(num - 1) + '">(이전)</a> <a href="/userlog/n/' + str(num + 1) + '">(이후)</a>'
- else:
- list_data = 'None'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = list_data,
- title = '사용자 가입 기록'
- )
- )
-
- @route('/backreset')
- def xref_reset():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(None) == 1):
- curs.execute("delete from back")
- curs.execute("delete from cat")
- conn.commit()
-
- curs.execute("select title, data from data")
- data = curs.fetchall()
- for end in data:
- print(end['title'])
- namumark(end['title'], end['data'], 1)
-
- conn.close()
- return(redirect('/'))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/xref/<name:path>')
- @route('/xref/<name:path>/n/<num:int>')
- def xref(name = None, num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- v = 50
- else:
- v = num * 50
-
- i = v - 50
- div = ''
-
- curs.execute("delete from back where title = '" + db_pas(name) + "' and link = ''")
- conn.commit()
-
- curs.execute("select * from back where title = '" + db_pas(name) + "' order by link asc")
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- div += '<li><a href="/w/' + url_pas(data['link']) + '">' + data['link'] + '</a>'
-
- if(data['type']):
- div += ' (' + data['type'] + ')</li>'
- else:
- div += '</li>'
-
- div += '<br> \
- <a href="/xref/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/xref/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
- else:
- div = 'None'
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = name,
- page = url_pas(name),
- sub = '역링크'
- )
- )
-
- @route('/recentdiscuss')
- def recentdiscuss():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- div = '<div> \
- <table style="text-align: center; width: 100%;"> \
- <tbody> \
- <tr> \
- <td style="width:50%;">토론명</td> \
- <td style="width:50%;">시간</td> \
- </tr>'
-
- curs.execute("select * from rd order by date desc limit 50")
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- title = data['title']
- title = re.sub('<', '<', title)
- title = re.sub('>', '>', title)
- title = re.sub('"', '"', title)
-
- sub = data['sub']
- sub = re.sub('<', '<', sub)
- sub = re.sub('>', '>', sub)
- sub = re.sub('"', '"', sub)
-
- div += '<tr> \
- <td> \
- <a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '">' + title + '</a> (' + sub + ') \
- </td> \
- <td>' + data['date'] + '</td> \
- </tr>'
- else:
- div += '</tbody></table></div>'
- else:
- div = 'None'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '최근 토론내역'
- )
- )
- @route('/blocklog')
- @route('/blocklog/n/<number:int>')
- def blocklog(num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- v = 50
- else:
- v = num * 50
-
- i = v - 50
- div = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:20%;">차단자</td><td style="text-align: center;width:20%;">관리자</td><td style="text-align: center;width:20%;">기간</td><td style="text-align: center;width:20%;">이유</td><td style="text-align: center;width:20%;">시간</td></tr>'
-
- curs.execute("select * from rb order by today desc")
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- why = data['why']
- why = re.sub('<', '<', why)
- why = re.sub('>', '>', why)
- why = re.sub('"', '"', why)
-
- b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", data['block'])
- if(b):
- ip = data['block'] + ' (대역)'
- else:
- ip = data['block']
-
- div += '<tr><td style="text-align: center;width:20%;">' + ip + '</a></td><td style="text-align: center;width:20%;">' + data['blocker'] + '</td><td style="text-align: center;width:20%;">' + data['end'] + '</td><td style="text-align: center;width:20%;">' + data['why'] + '</td><td style="text-align: center;width:20%;">' + data['today'] + '</td></tr>'
- else:
- div += '</tbody></table></div>'
- else:
- div = 'None'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '사용자 차단 기록'
- )
- )
- @route('/history/<name:path>', method=['POST', 'GET'])
- @route('/history/<name:path>/n/<num:int>', method=['POST', 'GET'])
- def history_view(name = None, num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(request.method == 'POST'):
- conn.close()
- return(redirect('/w/' + url_pas(name) + '/r/' + request.forms.b + '/diff/' + request.forms.a))
- else:
- select = ''
- num1 = 0
- num2 = 0
- curs.execute("select id from history where title = '" + db_pas(name) + "' order by id + 0 desc limit 1")
- end_num = curs.fetchall()
- if(end_num):
- num1 = int(end_num[0]['id']) - num * 50
- if(num1 > 0):
- num2 = num1 + 51
- else:
- if(num1 + 51 > 0):
- num2 = num1 + 51
-
- admin1 = admin_check(1)
- admin2 = admin_check(6)
-
- div = '<div> \
- <table style="text-align:center; width:100%;"> \
- <tbody> \
- <tr> \
- <td style="width:33.33%;">판</td> \
- <td style="width:33.33%;">기여자</td> \
- <td style="width:33.33%;">시간</td> \
- </tr>'
-
- curs.execute("select send, leng, ip, date, title, id from history where title = '" + db_pas(name) + "' and id + 0 < '" + str(num2) + "' and id + 0 > '" + str(num1) + "' order by id + 0 desc")
- all_data = curs.fetchall()
- if(all_data):
- for data in all_data:
- select += '<option value="' + data['id'] + '">' + data['id'] + '</option>'
-
- if(data['send']):
- send = data['send']
- else:
- send = '<br>'
-
- if(re.search("^\+", data['leng'])):
- leng = '<span style="color:green;">' + data['leng'] + '</span>'
- elif(re.search("^\-", data['leng'])):
- leng = '<span style="color:red;">' + data['leng'] + '</span>'
- else:
- leng = '<span style="color:gray;">' + data['leng'] + '</span>'
-
- ip = ip_pas(data['ip'], None)
-
- curs.execute("select block from ban where block = '" + db_pas(data['ip']) + "'")
- ban_it = curs.fetchall()
- if(ban_it):
- if(admin1 == 1):
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
- else:
- ban = ' (X)'
- else:
- if(admin1 == 1):
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
- else:
- ban = ''
-
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(data['id']) + "'")
- hid_it = curs.fetchall()
- if(hid_it):
- if(admin2):
- hidden = ' <a href="/history/' + url_pas(name) + '/r/' + url_pas(data['id']) + '/hidden">(공개)'
- hid = 0
- else:
- hid = 1
- else:
- if(admin2):
- hidden = ' <a href="/history/' + url_pas(name) + '/r/' + url_pas(data['id']) + '/hidden">(숨김)'
- hid = 0
- else:
- hidden = ''
- hid = 0
-
- if(hid == 1):
- div += '<tr> \
- <td colspan="3">숨김</td> \
- </tr>'
- else:
- div += '<tr> \
- <td> \
- ' + data['id'] + '판</a> <a href="/w/' + url_pas(data['title']) + '/r/' + url_pas(data['id']) + '">(보기)</a> \
- <a href="/w/' + url_pas(data['title']) + '/raw/' + url_pas(data['id']) + '">(원본)</a> \
- <a href="/revert/' + url_pas(data['title']) + '/r/' + url_pas(data['id']) + '">(되돌리기)</a> (' + leng + ') \
- </td> \
- <td>' + ip + ban + hidden + '</td> \
- <td>' + data['date'] + '</td> \
- </tr> \
- <tr> \
- <td colspan="3">' + send + '</td> \
- </tr>'
- else:
- div += '</tbody> \
- </table> \
- </div>'
- else:
- div = 'None \
- <br>'
-
- div += '<br> \
- <a href="/history/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/history/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = name,
- page = url_pas(name),
- select = select,
- sub = '역사'
- )
- )
-
- @route('/search', method=['POST'])
- def search():
- return(redirect('/search/' + url_pas(request.forms.search)))
- @route('/goto', method=['POST'])
- def goto():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select title from data where title = '" + db_pas(request.forms.search) + "'")
- data = curs.fetchall()
-
- conn.close()
-
- if(data):
- return(redirect('/w/' + url_pas(request.forms.search)))
- else:
- return(redirect('/search/' + url_pas(request.forms.search)))
- @route('/search/<name:path>')
- @route('/search/<name:path>/n/<num:int>')
- def deep_search(name = None, num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- v = num * 50
- else:
- v = 50
- i = v - 50
- div = ''
- div_plus = ''
- end = ''
- curs.execute("select title from data where title like '%" + db_pas(name) + "%'")
- title_list = curs.fetchall()
- curs.execute("select title from data where data like '%" + db_pas(name) + "%'")
- data_list = curs.fetchall()
- curs.execute("select title from data where title = '" + db_pas(name) + "'")
- exist = curs.fetchall()
- if(exist):
- div = '<li>문서로 <a href="/w/' + url_pas(name) + '">바로가기</a></li> \
- <br>'
- else:
- div = '<li>문서가 없습니다. <a class="not_thing" href="/w/' + url_pas(name) + '">바로가기</a></li><br>'
- if(title_list):
- no = 0
- if(data_list):
- all_list = title_list + data_list
- else:
- all_list = title_list
- else:
- if(data_list):
- no = 1
- all_list = data_list
- else:
- all_list = ''
-
- if(not all_list == ''):
- for data in all_list:
- re_title = re.compile(name, re.I)
- if(re.search(re_title, data['title'])):
- if(no == 0):
- div += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (문서명)</li>'
- else:
- div_plus += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (내용)</li>'
- else:
- no = 1
- div_plus += '<li><a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a> (내용)</li>'
- else:
- div += '<li>검색 결과 없음</li>'
- div += div_plus + end
- div += '<br> \
- <a href="/search/' + url_pas(name) + '/n/' + str(num - 1) + '">(이전)</a> <a href="/search/' + url_pas(name) + '/n/' + str(num + 1) + '">(이후)</a>'
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = name,
- sub = '검색'
- )
- )
-
- @route('/w/<name:path>/r/<num:int>')
- def old_view(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- row = curs.fetchall()
- if(row):
- if(not admin_check(6) == 1):
- conn.close()
- return(redirect('/history/' + url_pas(name)))
-
- curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
- rows = curs.fetchall()
- if(rows):
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = namumark(name, rows[0]['data'], 0),
- sub = '옛 문서'
- )
- )
- else:
- conn.close()
- return(redirect('/history/' + url_pas(name)))
-
- @route('/w/<name:path>/raw/<num:int>')
- def old_raw(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- row = curs.fetchall()
- if(row):
- if(not admin_check(6) == 1):
- conn.close()
- return(redirect('/error/3'))
- curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
- rows = curs.fetchall()
- if(rows):
- enddata = re.sub('<', '<', rows[0]['data'])
- enddata = re.sub('>', '>', enddata)
- enddata = re.sub('"', '"', enddata)
-
- enddata = '<textarea id="other_text">' + enddata + '</textarea>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = enddata,
- sub = '옛 원본'
- )
- )
- else:
- conn.close()
- return(redirect('/history/' + url_pas(name)))
-
- @route('/raw/<name:path>')
- def raw_view(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- enddata = re.sub('<', '<', rows[0]['data'])
- enddata = re.sub('>', '>', enddata)
- enddata = re.sub('"', '"', enddata)
-
- enddata = '<textarea id="other_text">' + enddata + '</textarea>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = enddata,
- sub = '원본'
- )
- )
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
-
- @route('/revert/<name:path>/r/<num:int>', method=['POST', 'GET'])
- def revert(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
- today = get_time()
-
- if(request.method == 'POST'):
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- row = curs.fetchall()
- if(row):
- if(not admin_check(6) == 1):
- conn.close()
- return(redirect('/error/3'))
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("delete from back where link = '" + db_pas(name) + "'")
- curs.execute("delete from cat where cat = '" + db_pas(name) + "'")
- conn.commit()
- curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
- rows = curs.fetchall()
- if(rows):
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- row = curs.fetchall()
- if(row):
- leng = leng_check(len(row[0]['data']), len(rows[0]['data']))
-
- curs.execute("update data set data = '" + db_pas(rows[0]['data']) + "' where title = '" + db_pas(name) + "'")
- conn.commit()
- else:
- leng = '+' + str(len(rows[0]['data']))
-
- curs.execute("insert into data (title, data, acl) value ('" + db_pas(name) + "', '" + db_pas(rows[0]['data']) + "', '')")
- conn.commit()
-
- history_plus(
- name,
- rows[0]['data'],
- today,
- ip,
- '문서를 ' + str(num) + '판으로 되돌렸습니다.',
- leng
- )
-
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- curs.execute("select * from hidhi where title = '" + db_pas(name) + "' and re = '" + db_pas(str(num)) + "'")
- row = curs.fetchall()
- if(row):
- if(not admin_check(6) == 1):
- conn.close()
- return(redirect('/error/3'))
-
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("select * from history where title = '" + db_pas(name) + "' and id = '" + str(num) + "'")
- rows = curs.fetchall()
- if(rows):
- conn.close()
- return(
- template('revert',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- r = url_pas(str(num)),
- plus = '정말 되돌리시겠습니까?',
- sub = '되돌리기'
- )
- )
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
-
- @route('/mdel', method=['POST', 'GET'])
- def many_del():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- today = get_time()
- ip = ip_check()
- if(admin_check(2) == 1):
- if(request.method == 'POST'):
- data = request.forms.content + '\r\n'
- while(True):
- m = re.search('(.*)\r\n', data)
- if(m):
- g = m.groups()
- curs.execute("select data from data where title = '" + db_pas(g[0]) + "'")
- rows = curs.fetchall()
- if(rows):
- curs.execute("delete from back where title = '" + db_pas(g[0]) + "'")
- curs.execute("delete from cat where title = '" + db_pas(g[0]) + "'")
- leng = '-' + str(len(rows[0]['data']))
- curs.execute("delete from data where title = '" + db_pas(g[0]) + "'")
- history_plus(
- g[0],
- '',
- today,
- ip,
- request.forms.send + ' (대량 삭제)',
- leng
- )
- data = re.sub('(.*)\r\n', '', data, 1)
- else:
- break
-
- conn.commit()
-
- conn.close()
- return(redirect('/'))
- else:
- conn.close()
- return(
- template('mdel',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '많은 문서 삭제',
- logo = set_data['name']
- )
- )
- else:
- conn.close()
- return(redirect('/error/3'))
-
-
- @route('/edit/<name:path>/section/<num:int>', method=['POST', 'GET'])
- def section_edit(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
-
- if(request.method == 'POST'):
- if(len(request.forms.send) > 500):
- conn.close()
- return(redirect('/error/15'))
- else:
- today = get_time()
-
- content = savemark(request.forms.content)
- curs.execute("delete from back where link = '" + db_pas(name) + "'")
- curs.execute("delete from cat where cat = '" + db_pas(name) + "'")
- conn.commit()
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- if(request.forms.otent == content):
- conn.close()
- return(redirect('/error/18'))
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- leng = leng_check(len(request.forms.otent), len(content))
-
- content = rows[0]['data'].replace(request.forms.otent, content)
-
- history_plus(
- name,
- content,
- today,
- ip,
- html_pas(request.forms.send, 2),
- leng
- )
-
- curs.execute("update data set data = '" + db_pas(content) + "' where title = '" + db_pas(name) + "'")
- conn.commit()
-
- include_check(name, content)
-
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- i = 0
- j = 0
-
- gdata = rows[0]['data'] + '\r\n'
- while(True):
- m = re.search("((?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n(?:(?:(?:(?!(?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n).)*)(?:\n)?)+)", gdata)
- if(m):
- if(i == num - 1):
- g = m.groups()
- gdata = re.sub("\r\n$", "", g[0])
- break
- else:
- gdata = re.sub("((?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n(?:(?:(?:(?!(?:={1,6})\s?(?:[^=]*)\s?(?:={1,6})(?:\s+)?\n).)*)(?:\n)?)+)", "", gdata, 1)
-
- i += 1
- else:
- j = 1
-
- break
-
- if(j == 0):
- gdata = re.sub("\r\n$", "", gdata)
- conn.close()
- return(
- template('edit',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = gdata,
- section = 1,
- number = num,
- sub = '편집'
- )
- )
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- @route('/edit/<name:path>', method=['POST', 'GET'])
- def edit(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
-
- if(request.method == 'POST'):
- if(len(request.forms.send) > 500):
- conn.close()
- return(redirect('/error/15'))
- else:
- today = get_time()
-
- content = savemark(request.forms.content)
- curs.execute("delete from back where link = '" + db_pas(name) + "'")
- curs.execute("delete from cat where cat = '" + db_pas(name) + "'")
- conn.commit()
-
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- if(rows[0]['data'] == content):
- conn.close()
- return(redirect('/error/18'))
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- leng = leng_check(len(rows[0]['data']), len(content))
- history_plus(
- name,
- content,
- today,
- ip,
- html_pas(request.forms.send, 2),
- leng
- )
-
- curs.execute("update data set data = '" + db_pas(content) + "' where title = '" + db_pas(name) + "'")
- conn.commit()
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- leng = '+' + str(len(content))
- history_plus(
- name,
- content,
- today,
- ip,
- html_pas(request.forms.send, 2),
- leng
- )
-
- curs.execute("insert into data (title, data, acl) value ('" + db_pas(name) + "', '" + db_pas(content) + "', '')")
- conn.commit()
-
- include_check(name, content)
-
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- data = rows[0]['data']
- else:
- data = ''
- conn.close()
- return(
- template('edit',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = data,
- sub = '편집'
- )
- )
- @route('/preview/<name:path>/section/<num:int>', method=['POST'])
- def section_preview(name = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
-
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- newdata = request.forms.content
- newdata = re.sub('^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)', ' * [[\g<in>]] 문서로 넘겨주기', newdata)
- enddata = namumark(name, newdata, 0)
-
- conn.close()
- return(
- template('edit',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = request.forms.content,
- preview = 1,
- enddata = enddata,
- section = 1,
- number = num,
- odata = request.forms.otent,
- sub = '미리보기'
- )
- )
-
- @route('/preview/<name:path>', method=['POST'])
- def preview(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
-
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- newdata = request.forms.content
- newdata = re.sub('^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)', ' * [[\g<in>]] 문서로 넘겨주기', newdata)
- enddata = namumark(name, newdata, 0)
-
- conn.close()
- return(
- template('edit',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = request.forms.content,
- preview = 1,
- enddata = enddata,
- sub = '미리보기'
- )
- )
-
- @route('/delete/<name:path>', method=['POST', 'GET'])
- def delete(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
-
- if(request.method == 'POST'):
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- today = get_time()
- curs.execute("delete from back where link = '" + db_pas(name) + "'")
- curs.execute("delete from cat where cat = '" + db_pas(name) + "'")
-
- leng = '-' + str(len(rows[0]['data']))
- history_plus(
- name,
- '',
- today,
- ip,
- request.forms.send + ' (삭제)',
- leng
- )
-
- curs.execute("delete from data where title = '" + db_pas(name) + "'")
- conn.commit()
-
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
- else:
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- conn.close()
- return(
- template('del',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- plus = '정말 삭제 하시겠습니까?',
- sub = '삭제'
- )
- )
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)))
-
- @route('/move/<name:path>', method=['POST', 'GET'])
- def move(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- can = acl_check(ip, name)
- today = get_time()
-
- if(request.method == 'POST'):
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- leng = '0'
- curs.execute("select * from history where title = '" + db_pas(request.forms.title) + "'")
- row = curs.fetchall()
- if(row):
- conn.close()
- return(redirect('/error/19'))
- else:
- history_plus(
- name,
- rows[0]['data'],
- today,
- ip,
- request.forms.send + ' (<a href="/w/' + url_pas(name) + '">' + name + '</a> - <a href="/w/' + url_pas(request.forms.title) + '">' + request.forms.title + '</a> 이동)',
- leng
- )
-
- if(rows):
- curs.execute("update data set title = '" + db_pas(request.forms.title) + "' where title = '" + db_pas(name) + "'")
- curs.execute("delete from back where link = '" + db_pas(name) + "'")
- curs.execute("delete from cat where cat = '" + db_pas(name) + "'")
- curs.execute("update history set title = '" + db_pas(request.forms.title) + "' where title = '" + db_pas(name) + "'")
- conn.commit()
-
- conn.close()
- return(redirect('/w/' + url_pas(request.forms.title)))
- else:
- if(can == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- conn.close()
- return(
- template('move',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- plus = '정말 이동 하시겠습니까?',
- sub = '이동'
- )
- )
-
- @route('/other')
- def other():
- return(
- template(
- 'other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '기타 메뉴',
- logo = set_data['name'],
- data = '<h2 style="margin-top: 0px;">기록</h2> \
- <li><a href="/blocklog">사용자 차단 기록</a></li> \
- <li><a href="/userlog">사용자 가입 기록</a></li> \
- <li><a href="/manager/6">사용자 기록</a></li> \
- <li><a href="/manager/7">사용자 토론 기록</a></li> \
- <h2>기타</h2> \
- <li><a href="/titleindex">모든 문서</a></li> \
- <li><a href="/acllist">ACL 문서 목록</a></li> \
- <li><a href="/upload">업로드</a></li> \
- <li><a href="/adminlist">관리자 목록</a></li> \
- <li><a href="/manager/1">관리자 메뉴</a></li> \
- <br> \
- 이 오픈나무의 버전은 <a href="https://github.com/2DU/openNAMU/blob/normal/version.md">v' + r_ver + '</a> 입니다.'
- )
- )
-
- @route('/manager/<num:int>', method=['POST', 'GET'])
- def manager(num = None):
- if(num == 1):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '관리자 메뉴',
- logo = set_data['name'],
- data = '<h2 style="margin-top: 0px;">목록</h2> \
- <li><a href="/manager/2">문서 ACL</a></li> \
- <li><a href="/manager/3">사용자 체크</a></li> \
- <li><a href="/manager/4">사용자 차단</a></li> \
- <li><a href="/manager/5">관리자 권한 주기</a></li> \
- <li><a href="/mdel">많은 문서 삭제</a></li> \
- <h2>소유자</h2> \
- <li><a href="/backreset">역링크, 분류 다시 생성</a></li> \
- <li><a href="/manager/8">관리 그룹 생성</a></li> \
- <h2>기타</h2> \
- <li>이 메뉴에 없는 기능은 해당 문서의 역사나 토론에서 바로 사용 가능함</li>'
- )
- )
- elif(num == 2):
- if(request.method == 'POST'):
- return(redirect('/acl/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = 'ACL 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/2"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- elif(num == 3):
- if(request.method == 'POST'):
- return(redirect('/check/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '체크 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/3"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- elif(num == 4):
- if(request.method == 'POST'):
- return(redirect('/ban/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '차단 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/4"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- <br> \
- <br> \
- <span>아이피 앞 두자리 (XXX.XXX) 입력하면 대역 차단</span> \
- </form>'
- )
- )
- elif(num == 5):
- if(request.method == 'POST'):
- return(redirect('/admin/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/5"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- elif(num == 6):
- if(request.method == 'POST'):
- return(redirect('/record/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '기록 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/6"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- elif(num == 7):
- if(request.method == 'POST'):
- return(redirect('/user/' + url_pas(request.forms.name) + '/topic'))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '토론 기록 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/7"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- elif(num == 8):
- if(request.method == 'POST'):
- return(redirect('/adminplus/' + url_pas(request.forms.name)))
- else:
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '그룹 생성 이동',
- logo = set_data['name'],
- data = '<form id="usrform" method="POST" action="/manager/8"> \
- <input name="name" type="text"> \
- <br> \
- <br> \
- <button class="btn btn-primary" type="submit">이동</button> \
- </form>'
- )
- )
- else:
- return(redirect('/'))
-
- @route('/titleindex')
- def title_index():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- i = [0, 0, 0, 0, 0, 0]
- data = '<div>'
- curs.execute("select title from data order by title asc")
- title_list = curs.fetchall()
- if(title_list):
- for list_data in title_list:
- data += '<li>' + str(i[0] + 1) + '. <a href="/w/' + url_pas(list_data['title']) + '">' + list_data['title'] + '</a></li>'
- if(re.search('^분류:', list_data['title'])):
- i[1] += 1
- elif(re.search('^사용자:', list_data['title'])):
- i[2] += 1
- elif(re.search('^틀:', list_data['title'])):
- i[3] += 1
- elif(re.search('^파일:', list_data['title'])):
- i[4] += 1
- else:
- i[5] += 1
-
- i[0] += 1
-
- else:
- data += '</div>'
-
- data += '<br> \
- <li>이 위키에는 총 ' + str(i[0]) + '개의 문서가 있습니다.</li> \
- <br> \
- <li>틀 문서는 총 ' + str(i[3]) + '개의 문서가 있습니다.</li> \
- <li>분류 문서는 총 ' + str(i[1]) + '개의 문서가 있습니다.</li> \
- <li>사용자 문서는 총 ' + str(i[2]) + '개의 문서가 있습니다.</li> \
- <li>파일 문서는 총 ' + str(i[4]) + '개의 문서가 있습니다.</li> \
- <li>나머지 문서는 총 ' + str(i[5]) + '개의 문서가 있습니다.</li>'
- else:
- data = 'None'
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = data,
- title = '모든 문서'
- )
- )
-
- @route('/topic/<name:path>/sub/<sub:path>/b/<num:int>')
- def topic_block(name = None, sub = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(3) == 1):
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- block = curs.fetchall()
- if(block):
- if(block[0]['block'] == 'O'):
- curs.execute("update topic set block = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- else:
- curs.execute("update topic set block = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- conn.commit()
-
- rd_plus(
- name,
- sub,
- get_time()
- )
-
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/topic/<name:path>/sub/<sub:path>/notice/<num:int>')
- def topic_top(name = None, sub = None, num = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(3) == 1):
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- topic_data = curs.fetchall()
- if(topic_data):
- curs.execute("select * from topic where id = '" + str(num) + "' and title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
- top_data = curs.fetchall()
- if(top_data):
- if(top_data[0]['top'] == 'O'):
- curs.execute("update topic set top = '' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- else:
- curs.execute("update topic set top = 'O' where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + str(num) + "'")
- conn.commit()
-
- rd_plus(
- name,
- sub,
- get_time()
- )
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/topic/<name:path>/sub/<sub:path>/stop')
- def topic_stop(name = None, sub = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(3) == 1):
- ip = ip_check()
-
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
- topic_check = curs.fetchall()
- if(topic_check):
- time = get_time()
-
- curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
- stop = curs.fetchall()
- if(stop):
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 재 시작', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
- else:
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 정지', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', '')")
- conn.commit()
-
- rd_plus(
- name,
- sub,
- time
- )
-
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/topic/<name:path>/sub/<sub:path>/close')
- def topic_close(name = None, sub = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(3) == 1):
- ip = ip_check()
-
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
- topic_check = curs.fetchall()
- if(topic_check):
- time = get_time()
-
- curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
- close = curs.fetchall()
- if(close):
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 다시 열기', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("delete from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
- else:
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '토론 닫음', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("insert into stop (title, sub, close) value ('" + db_pas(name) + "', '" + db_pas(sub) + "', 'O')")
- conn.commit()
-
- rd_plus(
- name,
- sub,
- time
- )
-
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/topic/<name:path>/sub/<sub:path>/agree')
- def topic_agree(name = None, sub = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(admin_check(3) == 1):
- ip = ip_check()
-
- curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
- topic_check = curs.fetchall()
- if(topic_check):
- time = get_time()
-
- curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
- agree = curs.fetchall()
- if(agree):
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 결렬', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("delete from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
- else:
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + db_pas(str(int(topic_check[0]['id']) + 1)) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '합의 완료', '" + db_pas(time) + "', '" + db_pas(ip) + "', '', '1')")
- curs.execute("insert into agreedis (title, sub) value ('" + db_pas(name) + "', '" + db_pas(sub) + "')")
- conn.commit()
-
- rd_plus(
- name,
- sub,
- time
- )
-
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- conn.close()
- return(redirect('/error/3'))
- @route('/topic/<name:path>/sub/<sub:path>', method=['POST', 'GET'])
- def topic(name = None, sub = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- ban = topic_check(ip, name, sub)
- admin = admin_check(3)
-
- if(request.method == 'POST'):
- curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 desc limit 1")
- rows = curs.fetchall()
- if(rows):
- num = int(rows[0]['id']) + 1
- else:
- num = 1
-
- if(ban == 1 and not admin == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- today = get_time()
- rd_plus(
- name,
- sub,
- today
- )
-
- aa = re.sub("\[\[(분류:(?:(?:(?!\]\]).)*))\]\]", "[br]", request.forms.content)
- aa = savemark(aa)
-
- curs.execute("insert into topic (id, title, sub, data, date, ip, block, top) value ('" + str(num) + "', '" + db_pas(name) + "', '" + db_pas(sub) + "', '" + db_pas(aa) + "', '" + today + "', '" + ip + "', '', '')")
- conn.commit()
-
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(sub)))
- else:
- style = ''
- curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = 'O'")
- close = curs.fetchall()
- curs.execute("select * from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and close = ''")
- stop = curs.fetchall()
-
- if(admin == 1):
- div = '<div>'
-
- if(close):
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/close">(토론 열기)</a> '
- else:
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/close">(토론 닫기)</a> '
-
- if(stop):
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/stop">(토론 재개)</a> '
- else:
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/stop">(토론 정지)</a> '
- curs.execute("select * from agreedis where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "'")
- agree = curs.fetchall()
- if(agree):
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/agree">(합의 취소)</a>'
- else:
- div += '<a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/agree">(합의 완료)</a>'
-
- div += '<br><br>'
- else:
- div = '<div>'
-
- if(stop or close):
- if(not admin == 1):
- style = 'display:none;'
-
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' order by id + 0 asc")
- toda = curs.fetchall()
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and top = 'O' order by id + 0 asc")
- top = curs.fetchall()
- if(top):
- for dain in top:
- top_data = namumark('', dain['data'], 0)
- top_data = re.sub("(?P<in>#(?:[0-9]*))", '<a href="\g<in>">\g<in></a>', top_data)
-
- ip = ip_pas(dain['ip'], 1)
-
- div += '<table id="toron"> \
- <tbody> \
- <tr> \
- <td id="toroncolorred"> \
- <a href="#' + dain['id'] + '">#' + dain['id'] + '</a> ' + ip + ' <span style="float:right;">' + dain['date'] + '</span> \
- </td> \
- </tr> \
- <tr> \
- <td>' + top_data + '</td> \
- </tr> \
- </tbody> \
- </table> \
- <br>'
-
- i = 0
- for dain in toda:
- if(i == 0):
- start = dain['ip']
-
- indata = namumark('', dain['data'], 0)
- indata = re.sub("(?P<in>#(?:[0-9]*))", '<a href="\g<in>">\g<in></a>', indata)
-
- if(dain['block'] == 'O'):
- indata = '<br>'
- block = 'id="block"'
- else:
- block = ''
- if(admin == 1):
- if(dain['block'] == 'O'):
- isblock = ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/b/' + str(i + 1) + '">(해제)</a>'
- else:
- isblock = ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/b/' + str(i + 1) + '">(가림)</a>'
- curs.execute("select id from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(sub) + "' and id = '" + db_pas(str(i + 1)) + "' and top = 'O'")
- row = curs.fetchall()
- if(row):
- isblock = isblock + ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/notice/' + str(i + 1) + '">(해제)</a>'
- else:
- isblock = isblock + ' <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(sub) + '/notice/' + str(i + 1) + '">(공지)</a>'
-
- curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'")
- ban_it = curs.fetchall()
- if(ban_it):
- ban = ' <a href="/ban/' + url_pas(dain['ip']) + '">(해제)</a>' + isblock
- else:
- ban = ' <a href="/ban/' + url_pas(dain['ip']) + '">(차단)</a>' + isblock
- else:
- curs.execute("select end from ban where block = '" + db_pas(dain['ip']) + "'")
- ban_it = curs.fetchall()
- if(ban_it):
- ban = ' (X)'
- else:
- ban = ''
-
- chad = ''
- curs.execute('select acl from user where id = "' + db_pas(dain['ip']) + '"')
- adch = curs.fetchall()
- if(adch):
- if(not adch[0]['acl'] == 'user'):
- chad = ' ★'
- ip = ip_pas(dain['ip'], 1)
-
- if(dain['top'] == '1'):
- color = 'blue'
- elif(dain['ip'] == start):
- color = 'green'
- else:
- color = ''
-
- div += '<table id="toron"> \
- <tbody> \
- <tr> \
- <td id="toroncolor' + color + '"> \
- <a href="javascript:void(0);" id="' + str(i + 1) + '">#' + str(i + 1) + '</a> ' + ip + chad + ban + ' <span style="float:right;">' + dain['date'] + '</span> \
- </td> \
- </tr> \
- <tr> \
- <td ' + block + '>' + indata + '</td> \
- </tr> \
- </tbody> \
- </table> \
- <br>'
-
- i += 1
-
- conn.close()
- return(
- template('vstopic',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- suburl = url_pas(sub),
- toron = sub,
- logo = set_data['name'],
- rows = div,
- ban = ban,
- style = style,
- sub = '토론'
- )
- )
-
- @route('/topic/<name:path>/close')
- def close_topic_list(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- div = '<div>'
- i = 0
-
- curs.execute("select * from stop where title = '" + db_pas(name) + "' and close = 'O' order by sub asc")
- rows = curs.fetchall()
- for data in rows:
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'")
- row = curs.fetchall()
- if(row):
- indata = namumark(name, row[0]['data'], 0)
-
- if(row[0]['block'] == 'O'):
- indata = '<br>'
- block = 'id="block"'
- else:
- block = ''
- ip = ip_pas(row[0]['ip'], 1)
-
- div += '<h2> \
- <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(data['sub']) + '">' + str((i + 1)) + '. ' + data['sub'] + '</a> \
- </h2> \
- <table id="toron"> \
- <tbody> \
- <tr> \
- <td id="toroncolorgreen"> \
- <a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + row[0]['date'] + '</span> \
- </td> \
- </tr> \
- <tr> \
- <td ' + block + '>' + indata + '</td> \
- </tr> \
- </tbody> \
- </table> \
- <br>'
-
- i += 1
- else:
- div += '</div>'
-
- conn.close()
- return(
- template('topic',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- logo = set_data['name'],
- plus = div,
- sub = '닫힘'
- )
- )
-
- @route('/topic/<name:path>/agree')
- def agree_topic_list(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- div = '<div>'
- i = 0
-
- curs.execute("select * from agreedis where title = '" + db_pas(name) + "' order by sub asc")
- agree_list = curs.fetchall()
- for data in agree_list:
- curs.execute("select * from topic where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1'")
- topic_data = curs.fetchall()
- if(topic_data):
- indata = namumark(name, topic_data[0]['data'], 0)
-
- if(topic_data[0]['block'] == 'O'):
- indata = '<br>'
- block = 'id="block"'
- else:
- block = ''
- ip = ip_pas(topic_data[0]['ip'], 1)
-
- div += '<h2> \
- <a href="/topic/' + url_pas(name) + '/sub/' + url_pas(data['sub']) + '">' + str(i + 1) + '. ' + data['sub'] + '</a> \
- </h2> \
- <table id="toron"> \
- <tbody> \
- <tr> \
- <td id="toroncolorgreen"> \
- <a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + topic_data[0]['date'] + '</span> \
- </td> \
- </tr> \
- <tr> \
- <td ' + block + '>' + indata + '</td> \
- </tr> \
- </tbody> \
- </table> \
- <br>'
-
- i += 1
- else:
- div += '</div>'
-
- conn.close()
- return(
- template('topic',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- logo = set_data['name'],
- plus = div,
- sub = '합의'
- )
- )
- @route('/topic/<name:path>', method=['POST', 'GET'])
- def topic_list(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(request.method == 'POST'):
- conn.close()
- return(redirect('/topic/' + url_pas(name) + '/sub/' + url_pas(request.forms.topic)))
- else:
- div = '<div>'
- j = 1
- curs.execute("select * from rd where title = '" + db_pas(name) + "' order by date asc")
- rows = curs.fetchall()
- for data in rows:
- curs.execute("select * from topic where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and id = '1' order by sub asc")
- aa = curs.fetchall()
-
- indata = namumark(name, aa[0]['data'], 0)
-
- if(aa[0]['block'] == 'O'):
- indata = '<br>'
- block = 'id="block"'
- else:
- block = ''
- ip = ip_pas(aa[0]['ip'], 1)
-
- curs.execute("select * from stop where title = '" + db_pas(data['title']) + "' and sub = '" + db_pas(data['sub']) + "' and close = 'O'")
- row = curs.fetchall()
- if(not row):
- div += '<h2> \
- <a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '">' + str(j) + '. ' + data['sub'] + '</a> \
- </h2> \
- <table id="toron"> \
- <tbody> \
- <tr> \
- <td id="toroncolorgreen"> \
- <a href="javascript:void(0);" id="1">#1</a> ' + ip + ' <span style="float:right;">' + aa[0]['date'] + '</span> \
- </td> \
- </tr> \
- <tr> \
- <td ' + block + '>' + indata + '</td> \
- </tr> \
- </tbody> \
- </table> \
- <br>'
-
- j += 1
- else:
- div += '</div>'
-
- conn.close()
- return(
- template('topic',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- logo = set_data['name'],
- plus = div,
- list = 1,
- sub = '토론 목록'
- )
- )
-
- @route('/login', method=['POST', 'GET'])
- def login():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- session = request.environ.get('beaker.session')
- ip = ip_check()
- ban = ban_check(ip)
-
- if(request.method == 'POST'):
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
- user = curs.fetchall()
- if(user):
- if(session.get('Now') == True):
- conn.close()
- return(redirect('/error/11'))
- elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))):
- session['Now'] = True
- session['DREAMER'] = request.forms.id
- curs.execute("select * from custom where user = '" + db_pas(request.forms.id) + "'")
- css_data = curs.fetchall()
- if(css_data):
- session['Daydream'] = css_data[0]['css']
- else:
- session['Daydream'] = ''
-
- curs.execute("insert into login (user, ip, today) value ('" + db_pas(request.forms.id) + "', '" + db_pas(ip) + "', '" + db_pas(get_time()) + "')")
- conn.commit()
-
- conn.close()
- return(redirect('/user'))
- else:
- conn.close()
- return(redirect('/error/13'))
- else:
- conn.close()
- return(redirect('/error/12'))
- else:
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- if(session.get('Now') == True):
- conn.close()
- return(redirect('/error/11'))
- else:
- conn.close()
- return(
- template('login',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '로그인',
- enter = '로그인',
- logo = set_data['name']
- )
- )
-
- @route('/change', method=['POST', 'GET'])
- def change_password():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- ban = ban_check(ip)
-
- if(request.method == 'POST'):
- if(request.forms.pw2 == request.forms.pw3):
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
- user = curs.fetchall()
- if(user):
- if(not re.search('(\.|:)', ip)):
- conn.close()
- return(redirect('/logout'))
- elif(bcrypt.checkpw(bytes(request.forms.pw, 'utf-8'), bytes(user[0]['pw'], 'utf-8'))):
- hashed = bcrypt.hashpw(bytes(request.forms.pw2, 'utf-8'), bcrypt.gensalt())
-
- curs.execute("update user set pw = '" + db_pas(hashed.decode()) + "' where id = '" + db_pas(request.forms.id) + "'")
- conn.commit()
-
- conn.close()
- return(redirect('/login'))
- else:
- conn.close()
- return(redirect('/error/10'))
- else:
- conn.close()
- return(redirect('/error/9'))
- else:
- conn.close()
- return(redirect('/error/20'))
- else:
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- if(not re.search('(\.|:)', ip)):
- conn.close()
- return(redirect('/logout'))
- else:
- conn.close()
- return(
- template('login',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '비밀번호 변경',
- enter = '변경',
- logo = set_data['name']
- )
- )
-
- @route('/check/<name:path>')
- def user_check(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from user where id = '" + db_pas(name) + "'")
- user = curs.fetchall()
- if(user and not user[0]['acl'] == 'user'):
- conn.close()
- return(redirect('/error/4'))
- else:
- if(admin_check(4) == 1):
- m = re.search('^(?:[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}?)$', name)
- if(m):
- sql = 'ip'
- else:
- sql = 'user'
- curs.execute("select * from login where " + sql + " = '" + db_pas(name) + "' order by today desc")
- row = curs.fetchall()
- if(row):
- c = '<div><table style="width: 100%;"><tbody><tr><td style="text-align: center;width:33.33%;">이름</td><td style="text-align: center;width:33.33%;">아이피</td><td style="text-align: center;width:33.33%;">언제</td></tr>'
- for data in row:
- c += '<tr><td style="text-align: center;width:33.33%;">' + data['user'] + '</td><td style="text-align: center;width:33.33%;">' + data['ip'] + '</td><td style="text-align: center;width:33.33%;">' + data['today'] + '</td></tr>'
- else:
- c += '</tbody></table></div>'
- else:
- c = 'None'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '다중 검사',
- logo = set_data['name'],
- data = c
- )
- )
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/register', method=['POST', 'GET'])
- def register():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- ban = ban_check(ip)
-
- if(request.method == 'POST'):
- if(request.forms.pw == request.forms.pw2):
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- m = re.search('(?:[^A-Za-zㄱ-힣0-9 ])', request.forms.id)
- if(m):
- conn.close()
- return(redirect('/error/8'))
- else:
- if(len(request.forms.id) > 20):
- conn.close()
- return(redirect('/error/7'))
- else:
- curs.execute("select * from user where id = '" + db_pas(request.forms.id) + "'")
- rows = curs.fetchall()
- if(rows):
- conn.close()
- return(redirect('/error/6'))
- else:
- hashed = bcrypt.hashpw(bytes(request.forms.pw, 'utf-8'), bcrypt.gensalt())
-
- curs.execute("select id from user limit 1")
- user_ex = curs.fetchall()
- if(not user_ex):
- curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'owner')")
- else:
- curs.execute("insert into user (id, pw, acl) value ('" + db_pas(request.forms.id) + "', '" + db_pas(hashed.decode()) + "', 'user')")
- conn.commit()
-
- conn.close()
- return(redirect('/login'))
- else:
- conn.close()
- return(redirect('/error/20'))
- else:
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- else:
- conn.close()
- return(
- template('login',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '회원가입',
- enter = '회원가입',
- logo = set_data['name']
- )
- )
-
- @route('/logout')
- def logout():
- session = request.environ.get('beaker.session')
- session['Now'] = False
- session.pop('DREAMER', None)
- return(redirect('/user'))
-
- @route('/ban/<name:path>', method=['POST', 'GET'])
- def user_ban(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from user where id = '" + db_pas(name) + "'")
- user = curs.fetchall()
- if(user and not user[0]['acl'] == 'user'):
- conn.close()
- return(redirect('/error/4'))
- else:
- if(request.method == 'POST'):
- if(admin_check(1) == 1):
- ip = ip_check()
-
- if(not re.search("[0-9]{4}-[0-9]{2}-[0-9]{2}", request.forms.end)):
- end = ''
- else:
- end = request.forms.end
- curs.execute("select * from ban where block = '" + db_pas(name) + "'")
- row = curs.fetchall()
- if(row):
- rb_plus(name, '해제', get_time(), ip, '')
-
- curs.execute("delete from ban where block = '" + db_pas(name) + "'")
- else:
- b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name)
- if(b):
- rb_plus(name, end, get_time(), ip, request.forms.why)
-
- curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', 'O')")
- else:
- rb_plus(name, end, get_time(), ip, request.forms.why)
-
- curs.execute("insert into ban (block, end, why, band) value ('" + db_pas(name) + "', '" + db_pas(end) + "', '" + db_pas(request.forms.why) + "', '')")
- conn.commit()
-
- conn.close()
- return(redirect('/ban/' + url_pas(name)))
- else:
- conn.close()
- return(redirect('/error/3'))
- else:
- if(admin_check(1) == 1):
- curs.execute("select * from ban where block = '" + db_pas(name) + "'")
- row = curs.fetchall()
- if(row):
- now = '차단 해제'
- else:
- b = re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name)
- if(b):
- now = '대역 차단'
- else:
- now = '차단'
-
- conn.close()
- return(
- template('ban',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- logo = set_data['name'],
- now = now,
- today = get_time(),
- sub = '차단'
- )
- )
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/acl/<name:path>', method=['POST', 'GET'])
- def acl(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(request.method == 'POST'):
- if(admin_check(5) == 1):
- curs.execute("select acl from data where title = '" + db_pas(name) + "'")
- row = curs.fetchall()
- if(row):
- if(request.forms.select == 'admin'):
- curs.execute("update data set acl = 'admin' where title = '" + db_pas(name) + "'")
- elif(request.forms.select == 'user'):
- curs.execute("update data set acl = 'user' where title = '" + db_pas(name) + "'")
- else:
- curs.execute("update data set acl = '' where title = '" + db_pas(name) + "'")
-
- conn.commit()
-
- conn.close()
- return(redirect('/w/' + url_pas(name)) )
- else:
- conn.close()
- return(redirect('/error/3'))
- else:
- if(admin_check(5) == 1):
- curs.execute("select acl from data where title = '" + db_pas(name) + "'")
- row = curs.fetchall()
- if(row):
- if(row[0]['acl'] == 'admin'):
- now = '관리자만'
- elif(row[0]['acl'] == 'user'):
- now = '로그인 이상'
- else:
- now = '일반'
-
- conn.close()
- return(
- template('acl',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- logo = set_data['name'],
- now = '현재 ACL 상태는 ' + now,
- sub = 'ACL'
- )
- )
- else:
- conn.close()
- return(redirect('/w/' + url_pas(name)) )
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/admin/<name:path>', method=['POST', 'GET'])
- def user_admin(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(request.method == 'POST'):
- if(admin_check(None) == 1):
- curs.execute("select * from user where id = '" + db_pas(name) + "'")
- user = curs.fetchall()
- if(user):
- if(not user[0]['acl'] == 'user'):
- curs.execute("update user set acl = 'user' where id = '" + db_pas(name) + "'")
- else:
- curs.execute("update user set acl = '" + db_pas(request.forms.select) + "' where id = '" + db_pas(name) + "'")
- conn.commit()
-
- conn.close()
- return(redirect('/'))
- else:
- conn.close()
- return(redirect('/error/5'))
- else:
- conn.close()
- return(redirect('/error/3'))
- else:
- if(admin_check(None) == 1):
- curs.execute("select * from user where id = '" + db_pas(name) + "'")
- user = curs.fetchall()
- if(user):
- if(not user[0]['acl'] == 'user'):
- now = '권한 해제'
- else:
- now = '권한 부여'
-
- div = ''
-
- curs.execute('select name from alist order by name asc')
- get_alist = curs.fetchall()
- if(get_alist):
- i = 0
- name_rem = ''
- for data in get_alist:
- if(not name_rem == data['name']):
- name_rem = data['name']
- div += '<option value="' + data['name'] + '" selected="selected">' + data['name'] + '</option>'
-
- conn.close()
- return(
- template('admin',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- page = url_pas(name),
- datalist = div,
- logo = set_data['name'],
- now = now,
- sub = '권한 부여'
- )
- )
- else:
- conn.close()
- return(redirect('/error/5'))
- else:
- conn.close()
- return(redirect('/error/3'))
-
- @route('/ban')
- def are_you_ban():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
-
- if(ban_check(ip) == 1):
- curs.execute("select * from ban where block = '" + db_pas(ip) + "'")
- rows = curs.fetchall()
- if(rows):
- if(rows[0]['end']):
- end = rows[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why']
- now = re.sub(':', '', get_time())
- now = re.sub('\-', '', now)
- now = int(re.sub(' ', '', now))
-
- day = re.sub('\-', '', rows[0]['end'])
-
- if(now >= int(day + '000000')):
- curs.execute("delete from ban where block = '" + db_pas(ip) + "'")
- conn.commit()
-
- end = '차단이 풀렸습니다. 다시 시도 해 보세요.'
- else:
- end = '영구 차단 상태 입니다. / 사유 : ' + rows[0]['why']
- else:
- b = re.search("^([0-9](?:[0-9]?[0-9]?)\.[0-9](?:[0-9]?[0-9]?))", ip)
- if(b):
- results = b.groups()
-
- curs.execute("select * from ban where block = '" + db_pas(results[0]) + "' and band = 'O'")
- row = curs.fetchall()
- if(row):
- if(row[0]['end']):
- end = row[0]['end'] + ' 까지 차단 상태 입니다. / 사유 : ' + rows[0]['why']
-
- now = re.sub(':', '', get_time())
- now = re.sub('\-', '', now)
- now = int(re.sub(' ', '', now))
-
- day = re.sub('\-', '', row[0]['end'])
-
- if(now >= int(day + '000000')):
- curs.execute("delete from ban where block = '" + db_pas(results[0]) + "' and band = 'O'")
- conn.commit()
-
- end = '차단이 풀렸습니다. 다시 시도 해 보세요.'
- else:
- end = '영구 차단 상태 입니다. / 사유 : ' + row[0]['why']
- else:
- end = '권한이 맞지 않는 상태 입니다.'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 오류',
- logo = set_data['name'],
- data = end
- )
- )
-
- @route('/w/<name:path>/r/<a:int>/diff/<b:int>')
- def diff_data(name = None, a = None, b = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select * from history where id = '" + db_pas(str(a)) + "' and title = '" + db_pas(name) + "'")
- a_raw_data = curs.fetchall()
- if(a_raw_data):
- curs.execute("select * from history where id = '" + db_pas(str(b)) + "' and title = '" + db_pas(name) + "'")
- b_raw_data = curs.fetchall()
- if(b_raw_data):
- a_data = re.sub('<', '<', a_raw_data[0]['data'])
- a_data = re.sub('>', '>', a_data)
- a_data = re.sub('"', '"', a_data)
-
- b_data = re.sub('<', '<', b_raw_data[0]['data'])
- b_data = re.sub('>', '>', b_data)
- b_data = re.sub('"', '"', b_data)
-
- diff_data = difflib.SequenceMatcher(None, a_data, b_data)
- result = diff(diff_data)
-
- result = '<pre>' + result + '</pre>'
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- data = result,
- sub = '비교',
- page = url_pas(name)
- )
- )
- else:
- conn.close()
- return(redirect('/history/' + url_pas(name)))
- else:
- conn.close()
- return(redirect('/history/' + url_pas(name)))
-
- @route('/down/<name:path>')
- def down(name = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
-
- curs.execute("select title from data where title like '%" + db_pas(name) + "/%'")
- under = curs.fetchall()
-
- div = ''
-
- i = 0
- for data in under:
- div += '<li>' + str(i + 1) + '. <a href="/w/' + url_pas(data['title']) + '">' + data['title'] + '</a></li>'
- i += 1
-
- conn.close()
-
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- data = div,
- sub = '하위 문서',
- page = url_pas(name)
- )
- )
- @route('/w/<name:path>')
- @route('/w/<name:path>/from/<redirect:path>')
- def read_view(name = None, redirect = None):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- data_none = False
- sub = None
- acl = ''
- div = ''
- topic = ''
-
- i = 0
- curs.execute("select sub from rd where title = '" + db_pas(name) + "' order by date asc")
- rows = curs.fetchall()
- for data in rows:
- curs.execute("select title from stop where title = '" + db_pas(name) + "' and sub = '" + db_pas(data['sub']) + "' and close = 'O'")
- row = curs.fetchall()
- if(not row):
- topic = "open"
- break
-
- curs.execute("select title from data where title like '%" + db_pas(name) + "/%'")
- under = curs.fetchall()
- if(under):
- down = True
- else:
- down = False
-
- m = re.search("^(.*)\/(.*)$", name)
- if(m):
- uppage = m.groups()[0]
- else:
- uppage = False
-
- if(admin_check(5) == 1):
- admin_memu = 'ACL'
- else:
- admin_memu = ''
-
- if(re.search("^분류:", name)):
- curs.execute("delete from cat where title = '" + db_pas(name) + "' and cat = ''")
- conn.commit()
-
- curs.execute("select * from cat where title = '" + db_pas(name) + "' order by cat asc")
- rows = curs.fetchall()
- if(rows):
- div = '<h2>분류</h2>'
- i = 0
-
- for data in rows:
- div += '<li><a href="/w/' + url_pas(data['cat']) + '">' + data['cat'] + '</a></li>'
-
- curs.execute("select * from data where title = '" + db_pas(name) + "'")
- rows = curs.fetchall()
- if(rows):
- if(rows[0]['acl'] == 'admin'):
- acl = '(관리자)'
- elif(rows[0]['acl'] == 'user'):
- acl = '(로그인)'
-
- elsedata = rows[0]['data']
- else:
- data_none = True
- elsedata = 'None'
- m = re.search("^사용자:([^/]*)", name)
- if(m):
- g = m.groups()
-
- curs.execute("select acl from user where id = '" + db_pas(g[0]) + "'")
- test = curs.fetchall()
- if(test):
- if(not test[0]['acl'] == 'user'):
- acl = '(관리자)'
- curs.execute("select block from ban where block = '" + db_pas(g[0]) + "'")
- user = curs.fetchall()
- if(user):
- sub = '차단'
-
- if(redirect):
- elsedata = re.sub("^#(?:redirect|넘겨주기)\s(?P<in>[^\n]*)", " * [[\g<in>]] 문서로 넘겨주기", elsedata)
-
- enddata = namumark(name, elsedata, 1)
-
- conn.close()
- return(
- template('read',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = name,
- logo = set_data['name'],
- page = url_pas(name),
- data = enddata + div,
- uppage = uppage,
- acl = acl,
- topic = topic,
- redirect = redirect,
- admin = admin_memu,
- data_none = data_none,
- sub = sub,
- down = down
- )
- )
- @route('/user/<name:path>/topic')
- @route('/user/<name:path>/topic/<num:int>')
- def user_topic_list(name = None, num = 1):
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- if(num * 50 <= 0):
- v = 50
- else:
- v = num * 50
-
- i = v - 50
- ydmin = admin_check(1)
- div = '<div> \
- <table style="text-align: center; width: 100%;"> \
- <tbody> \
- <tr> \
- <td style="width:33.33%;">토론명</td> \
- <td style="width:33.33%;">작성자</td> \
- <td style="width:33.33%;">시간</td> \
- </tr>'
-
- curs.execute("select title, id, sub, ip, date from topic where ip = '" + db_pas(name) + "' order by date desc limit " + str(i) + ", " + str(v))
- rows = curs.fetchall()
- if(rows):
- for data in rows:
- title = re.sub('<', '<', data['title'])
- title = re.sub('>', '>', title)
- title = re.sub('"', '"', title)
- sub = re.sub('<', '<', data['sub'])
- sub = re.sub('>', '>', sub)
- sub = re.sub('"', '"', sub)
-
- if(ydmin == 1):
- curs.execute("select * from ban where block = '" + db_pas(data['ip']) + "'")
- row = curs.fetchall()
- if(row):
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(해제)</a>'
- else:
- ban = ' <a href="/ban/' + url_pas(data['ip']) + '">(차단)</a>'
- else:
- ban = ''
-
- ip = ip_pas(data['ip'], 1)
-
- div += '<tr> \
- <td> \
- <a href="/topic/' + url_pas(data['title']) + '/sub/' + url_pas(data['sub']) + '#' + data['id'] + '">' + title + '</a> (' + sub + ') (#' + data['id'] + ') \
- </td> \
- <td>' + ip + ban + '</td> \
- <td>' + data['date'] + '</td> \
- </tr>'
- else:
- div += '</tbody> \
- </table> \
- </div>'
- else:
- div = 'None \
- <br>'
-
- div += '<br> \
- <a href="/user/' + url_pas(name) + '/topic/' + str(num - 1) + '">(이전)</a> <a href="/user/' + url_pas(name) + '/topic/' + str(num + 1) + '">(이후)</a>'
-
- curs.execute("select end, why from ban where block = '" + db_pas(name) + "'")
- ban_it = curs.fetchall()
- if(ban_it):
- sub = '차단'
- else:
- sub = None
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- data = div,
- title = '사용자 토론 기록',
- sub = sub
- )
- )
-
- @route('/user')
- def user_info():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- ip = ip_check()
- raw_ip = ip
-
- curs.execute("select * from user where id = '" + db_pas(ip) + "'")
- rows = curs.fetchall()
- if(ban_check(ip) == 0):
- if(rows):
- if(not rows[0]['acl'] == 'user'):
- acl = rows[0]['acl']
- else:
- acl = '로그인'
- else:
- acl = '일반'
- else:
- acl = '차단'
-
- ip = ip_pas(ip, 2)
-
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '사용자 메뉴',
- logo = set_data['name'],
- data = ip + \
- '<br> \
- <br> \
- <span>권한 상태 : ' + acl + '</span> \
- <h2>로그인 관련</h2> \
- <li><a href="/login">로그인</a></li> \
- <li><a href="/logout">로그아웃</a></li> \
- <li><a href="/register">회원가입</a></li> \
- <h2>기타</h2> \
- <li><a href="/change">비밀번호 변경</a></li> \
- <li><a href="/count">기여 횟수</a></li> \
- <li><a href="/custom">커스텀 CSS</a></li>'
- )
- )
- @route('/custom', method=['GET', 'POST'])
- def custom_css():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- session = request.environ.get('beaker.session')
- ip = ip_check()
- if(request.method == 'POST'):
- if(not re.search('(\.|:)', ip)):
- curs.execute("select * from custom where user = '" + db_pas(ip) + "'")
- css_data = curs.fetchall()
- if(css_data):
- curs.execute("update custom set css = '" + db_pas(request.forms.content) + "' where user = '" + db_pas(ip) + "'")
- else:
- curs.execute("insert into custom (user, css) value ('" + db_pas(ip) + "', '" + db_pas(request.forms.content) + "')")
- conn.commit()
- session['Daydream'] = request.forms.content
- conn.close()
- return(redirect('/user'))
- else:
- if(not re.search('(\.|:)', ip)):
- start = ''
- curs.execute("select * from custom where user = '" + db_pas(ip) + "'")
- css_data = curs.fetchall()
- if(css_data):
- data = css_data[0]['css']
- else:
- data = ''
- else:
- start = '<span>비 로그인의 경우에는 로그인하면 날아갑니다.</span><br><br>'
- try:
- data = session['Daydream']
- except:
- data = ''
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '커스텀 CSS',
- logo = set_data['name'],
- data = start + \
- '<form id="usrform" name="f1" method="POST" action="/custom"> \
- <textarea rows="30" cols="100" name="content" form="usrform">'\
- + data + \
- '</textarea> \
- <br> \
- <br> \
- <div class="form-actions"> \
- <button class="btn btn-primary" type="submit">저장</button> \
- </div> \
- </form>'
- )
- )
- @route('/upload', method=['GET', 'POST'])
- def upload():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
-
- ip = ip_check()
- ban = ban_check(ip)
-
- if(ban == 1):
- conn.close()
- return(redirect('/ban'))
- elif(request.method == 'POST'):
- if(request.files.file):
- comp = re.compile("^(.+)(\.(?:jpg|gif|png|jpeg))$", re.I)
- exist = comp.search(request.files.file.filename)
- if(exist):
- if((int(set_data['upload']) * 1024 * 1024) < request.content_length):
- conn.close()
- return(redirect('/error/17'))
- else:
- file_info = exist.groups()
-
- if(not request.forms.data):
- file_data = file_info[0] + file_info[1]
- file_name = sha224(file_info[0]) + file_info[1]
- else:
- file_data = request.forms.data + file_info[1]
- file_name = sha224(request.forms.data) + file_info[1]
-
- if(os.path.exists(os.path.join('image', file_name))):
- conn.close()
- return(redirect('/error/16'))
- else:
- request.files.file.save(os.path.join('image', file_name))
-
- if(not request.forms.lice):
- lice = ip + ' 업로드'
- else:
- lice = '라이선스 : ' + request.forms.lice
-
- curs.execute("select title from data where title = '" + db_pas('파일:' + file_data) + "'")
- exist_db = curs.fetchall()
- if(not exist_db):
- curs.execute("insert into data (title, data, acl) value ('" + db_pas('파일:' + file_data) + "', '" + db_pas('[[파일:' + file_data + ']][br][br]{{{[[파일:' + file_data + ']]}}}[br][br]' + lice) + "', '')")
- conn.commit()
-
- history_plus('파일:' + file_data, '[[파일:' + file_data + ']][br][br]{{{[[파일:' + file_data + ']]}}}', get_time(), ip, '파일:' + file_data + ' 업로드', '0')
-
- conn.close()
- return(redirect('/w/' + url_pas('파일:' + file_data)))
- else:
- conn.close()
- return(redirect('/error/14'))
- else:
- conn.close()
- return(redirect('/error/14'))
- else:
- conn.close()
- return(
- template('upload',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- logo = set_data['name'],
- title = '업로드',
- number = set_data['upload']
- )
- )
-
- @route('/count')
- def count_edit():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select count(title) from history where ip = '" + ip_check() + "'")
- count = curs.fetchall()
- if(count):
- data = count[0]["count(title)"]
- else:
- data = 0
- conn.close()
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '기여 횟수',
- logo = set_data['name'],
- data = "기여 횟수 : " + str(data)
- )
- )
-
- @route('/random')
- def random():
- conn = pymysql.connect(
- user = set_data['user'],
- password = set_data['pw'],
- charset = 'utf8mb4',
- db = set_data['db']
- )
- curs = conn.cursor(pymysql.cursors.DictCursor)
- curs.execute("select title from data order by rand() limit 1")
- rows = curs.fetchall()
- if(rows):
- conn.close()
- return(redirect('/w/' + url_pas(rows[0]['title'])))
- else:
- conn.close()
- return(redirect('/'))
-
- @route('/views/<name:path>')
- def views(name = None):
- if(re.search('\/', name)):
- m = re.search('^(.*)\/(.*)$', name)
- if(m):
- n = m.groups()
- plus = '/' + n[0]
- rename = n[1]
- else:
- plus = ''
- rename = name
- else:
- plus = ''
- rename = name
-
- return(
- static_file(rename,
- root = './views' + plus
- )
- )
-
- @route('/error/<num:int>')
- def error_test(num = None):
- if(num == 1):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 오류',
- logo = set_data['name'],
- data = '비 로그인 상태 입니다.'
- )
- )
- elif(num == 2):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 오류',
- logo = set_data['name'],
- data = '이 계정이 없습니다.'
- )
- )
- elif(num == 3):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 오류',
- logo = set_data['name'],
- data = '권한이 모자랍니다.'
- )
- )
- elif(num == 4):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '권한 오류',
- logo = set_data['name'],
- data = '관리자는 차단, 검사 할 수 없습니다.'
- )
- )
- elif(num == 5):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '사용자 오류',
- logo = set_data['name'],
- data = '그런 계정이 없습니다.'
- )
- )
- elif(num == 6):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '가입 오류',
- logo = set_data['name'],
- data = '동일한 아이디의 사용자가 있습니다.'
- )
- )
- elif(num == 7):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '가입 오류',
- logo = set_data['name'],
- data = '아이디는 20글자보다 짧아야 합니다.'
- )
- )
- elif(num == 8):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '가입 오류',
- logo = set_data['name'],
- data = '아이디에는 한글과 알파벳과 공백만 허용 됩니다.'
- )
- )
- elif(num == 9):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '변경 오류',
- logo = set_data['name'],
- data = '그런 계정이 없습니다.'
- )
- )
- elif(num == 10):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '변경 오류',
- logo = set_data['name'],
- data = '비밀번호가 다릅니다.'
- )
- )
- elif(num == 11):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '로그인 오류',
- logo = set_data['name'],
- data = '이미 로그인 되어 있습니다.'
- )
- )
- elif(num == 12):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '로그인 오류',
- logo = set_data['name'],
- data = '그런 계정이 없습니다.'
- )
- )
- elif(num == 13):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '로그인 오류',
- logo = set_data['name'],
- data = '비밀번호가 다릅니다.'
- )
- )
- elif(num == 14):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '업로드 오류',
- logo = set_data['name'],
- data = 'jpg, gif, jpeg, png만 가능 합니다.'
- )
- )
- elif(num == 15):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '편집 오류',
- logo = set_data['name'],
- data = '편집 기록은 500자를 넘을 수 없습니다.'
- )
- )
- elif(num == 16):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '업로드 오류',
- logo = set_data['name'],
- data = '동일한 이름의 파일이 있습니다.'
- )
- )
- elif(num == 17):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '업로드 오류',
- logo = set_data['name'],
- data = '파일 용량은 ' + set_data['upload'] + 'MB를 넘길 수 없습니다.'
- )
- )
- elif(num == 18):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '편집 오류',
- logo = set_data['name'],
- data = '내용이 원래 문서와 동일 합니다.'
- )
- )
- elif(num == 19):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '이동 오류',
- logo = set_data['name'],
- data = '이동 하려는 곳에 문서가 이미 있습니다.'
- )
- )
- elif(num == 20):
- return(
- template('other',
- custom = custom_css_user(),
- license = set_data['license'],
- login = login_check(),
- title = '비밀번호 오류',
- logo = set_data['name'],
- data = '재 확인이랑 비밀번호가 다릅니다.'
- )
- )
- else:
- return(redirect('/'))
- @error(404)
- def error_404(error):
- return(redirect('/w/' + url_pas(set_data['frontpage'])))
-
- run(
- app = app,
- server='tornado',
- host = '0.0.0.0',
- port = int(set_data['port'])
- )
|
