openNAMU__openNAMU/func.py

# 모듈들 불러옴
from css_html_js_minify import html_minify, js_minify, css_minify
from flask import session, render_template
from urllib import parse

import json
import sqlite3
import hashlib
import requests
import re
import html
import time
import os

# 일부 툴 불러옴
from set_mark.tool import get_time
from set_mark.tool import ip_check
from set_mark.tool import url_pas
from set_mark.tool import sha224

# 나무마크 불러옴
from mark import *

def captcha_get(conn):
    curs = conn.cursor()

    data = ''

    if custom(conn)[2] == 0:
        curs.execute('select data from other where name = "recaptcha"')
        recaptcha = curs.fetchall()
        if recaptcha and recaptcha[0][0] != '':
            curs.execute('select data from other where name = "sec_re"')
            sec_re = curs.fetchall()
            if sec_re and sec_re[0][0] != '':
                data += recaptcha[0][0] + '<hr>'

    return data

def captcha_post(test, conn, num = 1):
    curs = conn.cursor()

    if num == 1:
        if custom(conn)[2] == 0 and captcha_get(conn) != '':
            curs.execute('select data from other where name = "sec_re"')
            sec_re = curs.fetchall()
            if sec_re and sec_re[0][0] != '':
                data = requests.get('https://www.google.com/recaptcha/api/siteverify', params = { 'secret' : sec_re, 'response' : test })
                if not data:
                    return 0
                else:
                    json_data = data.json()
                    if data.status_code == 200 and json_data['success'] == True:
                        return 0
                    else:
                        return 1
            else:
                return 0
        else:
            return 0
    else:
        pass

def edit_help_button():
    # https://stackoverflow.com/questions/11076975/insert-text-into-textarea-at-cursor-position-javascript
    js = '''<script>
                function insertAtCursor(myField, myValue) {
                    if (document.selection) { 
                        document.getElementById(myField).focus();
                        sel = document.selection.createRange(); 
                        sel.text = myValue; 
                    } else if (document.getElementById(myField).selectionStart || document.getElementById(myField).selectionStart == '0') { 
                        var startPos = document.getElementById(myField).selectionStart; 
                        var endPos = document.getElementById(myField).selectionEnd; 
                        document.getElementById(myField).value = document.getElementById(myField).value.substring(0, startPos) + myValue + document.getElementById(myField).value.substring(endPos, document.getElementById(myField).value.length); 
                    } else { 
                        document.getElementById(myField).value += myValue;
                    }
                }
            </script>
        '''

    js_button = '<a href="javascript:void(0);" onclick="insertAtCursor(\'content\', \'[[]]\');">(링크)</a> <a href="javascript:void(0);" onclick="insertAtCursor(\'content\', \'[macro()]\');">(매크로)</a> <a href="javascript:void(0);" onclick="insertAtCursor(\'content\', \'{{{#! }}}\');">(중괄호)</a>'

    return [js, js_button]

def ip_warring(conn):
    curs = conn.cursor()

    if custom(conn)[2] == 0:    
        curs.execute('select data from other where name = "no_login_warring"')
        data = curs.fetchall()
        if data and data[0][0] != '':
            text_data = '<span>' + data[0][0] + '</span><hr>'
        else:
            text_data = '<span>비 로그인 상태입니다. 비 로그인으로 진행 시 아이피가 기록됩니다.</span><hr>'
    else:
        text_data = ''

    return text_data

def skin_check(conn):
    curs = conn.cursor()

    skin = './views/acme/'
    
    try:
        curs.execute('select skin from user where id = ?', [ip_check()])
        skin_exist = curs.fetchall()
        if skin_exist and skin_exist[0][0] != '':
            if os.path.exists(os.path.abspath('./views/' + skin_exist[0][0] + '/index.html')) == 1:
                skin = './views/' + skin_exist[0][0] + '/'
        else:
            curs.execute('select data from other where name = "skin"')
            skin_exist = curs.fetchall()
            if skin_exist:
                if os.path.exists(os.path.abspath('./views/' + skin_exist[0][0] + '/index.html')) == 1:
                    skin = './views/' + skin_exist[0][0] + '/'
    except:
        pass

    return skin + 'index.html'

def next_fix(link, num, page, end = 50):
    list_data = ''

    if num == 1:
        if len(page) == end:
            list_data += '<hr><a href="' + link + str(num + 1) + '">(이후)</a>'
    elif len(page) != end:
        list_data += '<hr><a href="' + link + str(num - 1) + '">(이전)</a>'
    else:
        list_data += '<hr><a href="' + link + str(num - 1) + '">(이전)</a> <a href="' + link + str(num + 1) + '">(이후)</a>'

    return list_data

def other2(origin):
    return origin + ['제거 되었음. 스킨 업데이트 필요함.']    

def wiki_set(conn, num):
    curs = conn.cursor()

    if num == 1:
        data_list = []

        curs.execute('select data from other where name = ?', ['name'])
        db_data = curs.fetchall()
        if db_data and db_data[0][0] != '':
            data_list += [db_data[0][0]]
        else:
            data_list += ['Wiki']

        curs.execute('select data from other where name = "license"')
        db_data = curs.fetchall()
        if db_data and db_data[0][0] != '':
            data_list += [db_data[0][0]]
        else:
            data_list += ['CC 0']

        data_list += ['', '']

        curs.execute('select data from other where name = "logo"')
        db_data = curs.fetchall()
        if db_data and db_data[0][0] != '':
            data_list += [db_data[0][0]]
        else:
            data_list += [data_list[0]]
            
        curs.execute("select data from other where name = 'head'")
        db_data = curs.fetchall()
        if db_data and db_data[0][0] != '':
            data_list += [db_data[0][0]]
        else:
            data_list += ['']

        return data_list

    if num == 2:
        var_data = 'FrontPage'

        curs.execute('select data from other where name = "frontpage"')
    elif num == 3:
        var_data = '2'

        curs.execute('select data from other where name = "upload"')
    
    db_data = curs.fetchall()
    if db_data and db_data[0][0] != '':
        return db_data[0][0]
    else:
        return var_data

def diff(seqm):
    output = []

    for opcode, a0, a1, b0, b1 in seqm.get_opcodes():
        if opcode == 'equal':
            output += [seqm.a[a0:a1]]
        elif opcode == 'insert':
            output += ["<span style='background:#CFC;'>" + seqm.b[b0:b1] + "</span>"]
        elif opcode == 'delete':
            output += ["<span style='background:#FDD;'>" + seqm.a[a0:a1] + "</span>"]
        elif opcode == 'replace':
            output += ["<span style='background:#FDD;'>" + seqm.a[a0:a1] + "</span>"]
            output += ["<span style='background:#CFC;'>" + seqm.b[b0:b1] + "</span>"]
            
    return ''.join(output)
           
def admin_check(conn, num, what):
    ip = ip_check() 

    curs = conn.cursor()

    curs.execute("select acl from user where id = ?", [ip])
    user = curs.fetchall()
    if user:
        reset = 0

        while 1:
            if num == 1 and reset == 0:
                check = 'ban'
            elif num == 2 and reset == 0:
                check = 'mdel'
            elif num == 3 and reset == 0:
                check = 'toron'
            elif num == 4 and reset == 0:
                check = 'check'
            elif num == 5 and reset == 0:
                check = 'acl'
            elif num == 6 and reset == 0:
                check = 'hidel'
            elif num == 7 and reset == 0:
                check = 'give'
            else:
                check = 'owner'

            curs.execute('select name from alist where name = ? and acl = ?', [user[0][0], check])
            if curs.fetchall():
                if what:
                    curs.execute("insert into re_admin (who, what, time) values (?, ?, ?)", [ip, what, get_time()])
                    conn.commit()

                return 1
            else:
                if reset == 0:
                    reset = 1
                else:
                    break

def ip_pas(conn, raw_ip):
    curs = conn.cursor()
    hide = 0

    if re.search("(\.|:)", raw_ip):
        if not re.search("^도구:", raw_ip):    
            curs.execute("select data from other where name = 'ip_view'")
            data = curs.fetchall()
            if data and data[0][0] != '':
                ip = '<span style="font-size: 75%;">' + hashlib.md5(bytes(raw_ip, 'utf-8')).hexdigest() + '</span>'

                if not admin_check(conn, 'ban', None):
                    hide = 1
            else:
                ip = raw_ip
        else:
            ip = raw_ip
            hide = 1
    else:
        curs.execute("select title from data where title = ?", ['사용자:' + raw_ip])
        if curs.fetchall():
            ip = '<a href="/w/' + url_pas('사용자:' + raw_ip) + '">' + raw_ip + '</a>'
        else:
            ip = '<a id="not_thing" href="/w/' + url_pas('사용자:' + raw_ip) + '">' + raw_ip + '</a>'
         
    if hide == 0:
        ip += ' <a href="/record/' + url_pas(raw_ip) + '">(기록)</a>'

    return ip

def custom(conn):
    curs = conn.cursor()

    if 'MyMaiToNight' in session:
        user_head = session['MyMaiToNight']
    else:
        user_head = ''

    if 'Now' in session and session['Now'] == 1:
        curs.execute('select name from alarm where name = ? limit 1', [ip_check()])
        if curs.fetchall():
            user_icon = 2
        else:
            user_icon = 1
    else:
        user_icon = 0

    if user_icon != 0:
        curs.execute('select email from user where id = ?', [ip_check()])
        data = curs.fetchall()
        if data:
            email = data[0][0]
        else:
            email = ''
    else:
        email = ''

    if user_icon != 0:
        user_name = ip_check()
    else:
        user_name = '사용자'

    return ['', '', user_icon, user_head, email, user_name]

def acl_check(conn, name):
    curs = conn.cursor()

    ip = ip_check()

    if ban_check(conn) == 1:
        return 1

    acl_c = re.search("^사용자:([^/]*)", name)
    if acl_c:
        acl_n = acl_c.groups()

        if admin_check(conn, 5, None) == 1:
            return 0

        curs.execute("select dec from acl where title = ?", ['사용자:' + acl_n[0]])
        acl_data = curs.fetchall()
        if acl_data:
            if acl_data[0][0] == 'all':
                return 0

            if acl_data[0][0] == 'user' and not re.search("(\.|:)", ip):
                return 0

            if ip != acl_n[0] or re.search("(\.|:)", ip):
                return 1
        
        if ip == acl_n[0] and not re.search("(\.|:)", ip) and not re.search("(\.|:)", acl_n[0]):
            return 0
        else:
            return 1

    file_c = re.search("^파일:(.*)", name)
    if file_c and admin_check(conn, 5, 'edit (' + name + ')') != 1:
        return 1

    curs.execute("select acl from user where id = ?", [ip])
    user_data = curs.fetchall()

    curs.execute("select dec from acl where title = ?", [name])
    acl_data = curs.fetchall()
    if acl_data:
        if acl_data[0][0] == 'user':
            if not user_data:
                return 1

        if acl_data[0][0] == 'admin':
            if not user_data:
                return 1

            if not admin_check(conn, 5, 'edit (' + name + ')') == 1:
                return 1

    curs.execute('select data from other where name = "edit"')
    set_data = curs.fetchall()
    if set_data:
        if set_data[0][0] == 'user':
            if not user_data:
                return 1

        if set_data[0][0] == 'admin':
            if not user_data:
                return 1

            if not admin_check(conn, 5, None) == 1:
                return 1

    return 0

def ban_check(conn):
    ip = ip_check()

    curs = conn.cursor()

    band = re.search("^([0-9]{1,3}\.[0-9]{1,3})", ip)
    if band:
        band_it = band.groups()[0]
    else:
        band_it = 'Not'
        
    curs.execute("select block from ban where block = ?", [band_it])
    band_d = curs.fetchall()
    
    curs.execute("select block from ban where block = ?", [ip])
    ban_d = curs.fetchall()
    if band_d or ban_d:
        return 1
    
    return 0
        
def topic_check(conn, name, sub):
    ip = ip_check()

    curs = conn.cursor()

    if ban_check(conn) == 1:
        return 1
        
    curs.execute("select acl from user where id = ?", [ip])
    user_data = curs.fetchall()

    curs.execute("select dis from acl where title = ?", [name])
    acl_data = curs.fetchall()
    if acl_data:
        if acl_data[0][0] == 'user':
            if not user_data:
                return 1

        if acl_data[0][0] == 'admin':
            if not user_data:
                return 1

            if not admin_check(conn, 3, 'topic (' + name + ')') == 1:
                return 1
        
    curs.execute("select title from stop where title = ? and sub = ?", [name, sub])
    if curs.fetchall():
        if not admin_check(conn, 3, 'topic (' + name + ')') == 1:
            return 1

    return 0

def ban_insert(conn, name, end, why, login, blocker):
    curs = conn.cursor()

    time = get_time()

    if re.search("^([0-9]{1,3}\.[0-9]{1,3})$", name):
        band = 'O'
    else:
        band = ''

    curs.execute("select block from ban where block = ?", [name])
    if curs.fetchall():
        curs.execute("insert into rb (block, end, today, blocker, why, band) values (?, ?, ?, ?, ?, ?)", [name, '해제', time, blocker, '', band])
        curs.execute("delete from ban where block = ?", [name])
    else:
        if login != '':
            login = 'O'
        else:
            login = ''

        if end != '':
            end += ' 00:00:00'

        curs.execute("insert into rb (block, end, today, blocker, why, band) values (?, ?, ?, ?, ?, ?)", [name, end, time, blocker, why, band])
        curs.execute("insert into ban (block, end, why, band, login) values (?, ?, ?, ?, ?)", [name, end, why, band, login])
    
    conn.commit()

def rd_plus(conn, title, sub, date):
    curs = conn.cursor()

    curs.execute("select title from rd where title = ? and sub = ?", [title, sub])
    if curs.fetchall():
        curs.execute("update rd set date = ? where title = ? and sub = ?", [date, title, sub])
    else:
        curs.execute("insert into rd (title, sub, date) values (?, ?, ?)", [title, sub, date])

def history_plus(conn, title, data, date, ip, send, leng):
    curs = conn.cursor()

    curs.execute("select id from history where title = ? order by id + 0 desc limit 1", [title])
    id_data = curs.fetchall()
    if id_data:
        curs.execute("insert into history (id, title, data, date, ip, send, leng) values (?, ?, ?, ?, ?, ?, ?)", [str(int(id_data[0][0]) + 1), title, data, date, ip, send, leng])
    else:
        curs.execute("insert into history (id, title, data, date, ip, send, leng) values ('1', ?, ?, ?, ?, ?, ?)", [title, data, date, ip, send + ' (새 문서)', leng])

def leng_check(first, second):
    if first < second:
        all_plus = '+' + str(second - first)
    elif second < first:
        all_plus = '-' + str(first - second)
    else:
        all_plus = '0'
        
    return all_plus

def redirect(data):
    return '<meta http-equiv="refresh" content="0; url=' + data + '">'

def re_error(conn, data):
    curs = conn.cursor()

    if data == '/ban':
        ip = ip_check()

        end = '<li>사유 : 권한이 맞지 않는 상태 입니다.</li>'

        if ban_check(conn) == 1:
            curs.execute("select end, why from ban where block = ?", [ip])
            end_data = curs.fetchall()
            if not end_data:
                match = re.search("^([0-9]{1,3}\.[0-9]{1,3})", ip)
                if match:
                    curs.execute("select end, why from ban where block = ?", [match.groups()[0]])
                    end_data = curs.fetchall()
            
            if end_data:
                end = '<li>상태 : '

                if end_data[0][0]:
                    now = int(re.sub('(\-| |:)', '', get_time()))
                    day = int(re.sub('(\-| |:)', '', end_data[0][0]))
                    
                    if now >= day:
                        curs.execute("delete from ban where block = ?", [ip])
                        conn.commit()

                        end += '차단이 풀렸습니다. 다시 해보세요.'
                    else:
                        end += '차단 중 : ' + end_data[0][0]
                else:
                    end += '무기한 차단 상태 입니다.'
                
                end += '</li>'

                if end_data[0][1] != '':
                    end += '<li>사유 : ' + end_data[0][1] + '</li>'

        return html_minify(render_template(skin_check(conn), 
            imp = ['권한 오류', wiki_set(conn, 1), custom(conn), other2([0, 0])],
            data = '<h2>권한 상태</h2><ul>' + end + '</ul>',
            menu = 0
        ))

    error_data = re.search('\/error\/([0-9]+)', data)
    if error_data:
        num = int(error_data.groups()[0])
        if num == 1:
            title = '권한 오류'
            data = '비 로그인 상태 입니다.'
        elif num == 2:
            title = '권한 오류'
            data = '이 계정이 없습니다.'
        elif num == 3:
            title = '권한 오류'
            data = '권한이 모자랍니다.'
        elif num == 4:
            title = '권한 오류'
            data = '관리자는 차단, 검사 할 수 없습니다.'
        elif num == 5:
            title = '사용자 오류'
            data = '그런 계정이 없습니다.'
        elif num == 6:
            title = '가입 오류'
            data = '동일한 아이디의 사용자가 있습니다.'
        elif num == 7:
            title = '가입 오류'
            data = '아이디는 20글자보다 짧아야 합니다.'
        elif num == 8:
            title = '가입 오류'
            data = '아이디에는 한글과 알파벳과 공백만 허용 됩니다.'
        elif num == 9:
            title = '파일 올리기 오류'
            data = '파일이 없습니다.'
        elif num == 10:
            title = '변경 오류'
            data = '비밀번호가 다릅니다.'
        elif num == 11:
            title = '로그인 오류'
            data = '이미 로그인 되어 있습니다.'
        elif num == 13:
            title = '리캡차 오류'
            data = '리캡차를 통과하세요.'
        elif num == 14:
            title = '파일 올리기 오류'
            data = 'jpg, gif, jpeg, png, webp만 가능 합니다.'
        elif num == 15:
            title = '편집 오류'
            data = '편집 기록은 500자를 넘을 수 없습니다.'
        elif num == 16:
            title = '파일 올리기 오류'
            data = '동일한 이름의 파일이 있습니다.'
        elif num == 17:
            title = '파일 올리기 오류'
            data = '파일 용량은 ' + wiki_set(conn, 3) + 'MB를 넘길 수 없습니다.'
        elif num == 18:
            title = '편집 오류'
            data = '내용이 원래 문서와 동일 합니다.'
        elif num == 19:
            title = '이동 오류'
            data = '이동 하려는 곳에 문서가 이미 있습니다.'
        elif num == 20:
            title = '비밀번호 오류'
            data = '재 확인이랑 비밀번호가 다릅니다.'
        elif num == 21:
            title = '편집 오류'
            data = '편집 필터에 의해 검열 되었습니다.'
        elif num == 22:
            title = '파일 올리기 오류'
            data = '파일 이름은 알파벳, 한글, 띄어쓰기, 언더바, 빼기표만 허용 됩니다.'
        else:
            title = '정체 불명의 오류'
            data = '???'

        if title:
            return html_minify(render_template(skin_check(conn), 
                imp = [title, wiki_set(conn, 1), custom(conn), other2([0, 0])],
                data = '<h2>오류 발생</h2><ul><li>' + data + '</li></ul>',
                menu = 0
            ))
        else:
            return redirect('/')
    else:
        return redirect('/')