| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 |
- from .tool.func import *
- async def login_login_2fa():
- with get_db_connect() as conn:
- curs = conn.cursor()
- # email 2fa
- # pw 2fa
- # q_a 2fa
- if not (flask.session and 'login_id' in flask.session):
- return redirect(conn, '/user')
- ip = ip_check()
- if ip_or_user(ip) == 0:
- return redirect(conn, '/user')
- if (await ban_check(None, 'login'))[0] == 1:
- return await re_error(conn, 0)
- if flask.request.method == 'POST':
- if await captcha_post(conn, flask.request.form.get('g-recaptcha-response', flask.request.form.get('g-recaptcha', ''))) == 1:
- return await re_error(conn, 13)
- user_agent = flask.request.headers.get('User-Agent', '')
- user_id = flask.session['login_id']
- user_pw = flask.request.form.get('pw', '')
- curs.execute(db_change('select data from user_set where name = "2fa_pw" and id = ?'), [user_id])
- user_1 = curs.fetchall()
- if user_1:
- curs.execute(db_change('select data from user_set where name = "2fa_pw_encode" and id = ?'), [user_id])
- user_1 = user_1[0][0]
- user_2 = curs.fetchall()[0][0]
- pw_check_d = pw_check(conn, user_pw, user_1, user_2, user_id)
- if pw_check_d != 1:
- return await re_error(conn, 10)
- flask.session['id'] = user_id
- ua_plus(conn,
- user_id,
- ip,
- user_agent,
- get_time()
- )
- flask.session.pop('b_id', None)
- return redirect(conn, '/user')
- else:
- return easy_minify(flask.render_template(await skin_check(conn),
- imp = [await get_lang('login'), await wiki_set(), await wiki_custom(conn), wiki_css([0, 0])],
- data = '''
- <form method="post">
- <input placeholder="''' + await get_lang('2fa_password') + '''" name="pw" type="password">
- <hr class="main_hr">
- ''' + await captcha_get(conn) + '''
- <button type="submit">''' + await get_lang('login') + '''</button>
- ''' + await http_warning() + '''
- </form>
- ''',
- menu = [['user', await get_lang('return')]]
- ))
|
