| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154 |
- from .tool.func import *
- def login_check_key_2(conn, tool):
- curs = conn.cursor()
- # 난잡한 코드 정리 필요
- if flask.request.method == 'POST':
- if tool == 'check_pass_key':
- if 'c_id' in flask.session and flask.session['c_key'] == flask.request.form.get('key', None):
- hashed = pw_encode(flask.session['c_key'])
- curs.execute(db_change("update user set pw = ? where id = ?"), [hashed, flask.session['c_id']])
- conn.commit()
- d_id = flask.session['c_id']
- pw = flask.session['c_key']
- flask.session.pop('c_id', None)
- flask.session.pop('c_key', None)
- curs.execute(db_change('select data from other where name = "reset_user_text"'))
- sql_d = curs.fetchall()
- if sql_d and sql_d[0][0] != '':
- b_text = sql_d[0][0] + '<hr class="main_hr">'
- else:
- b_text = ''
- curs.execute(db_change('select data from user_set where name = "2fa" and id = ?'), [d_id])
- if curs.fetchall():
- curs.execute(db_change("update user_set set data = '' where name = '2fa' and id = ?"), [d_id])
- return easy_minify(flask.render_template(skin_check(),
- imp = [load_lang('reset_user_ok'), wiki_set(), custom(), other2([0, 0])],
- data = b_text + load_lang('id') + ' : ' + d_id + '<br>' + load_lang('password') + ' : ' + pw,
- menu = [['user', load_lang('return')]]
- ))
- else:
- return redirect('/pass_find')
- else:
- ip = ip_check()
- if 'c_id' in flask.session and flask.session['c_key'] == flask.request.form.get('key', None):
- curs.execute(db_change('select data from other where name = "encode"'))
- db_data = curs.fetchall()
- if tool == 'check_key':
- curs.execute(db_change("select id from user limit 1"))
- if not curs.fetchall():
- curs.execute(db_change("insert into user (id, pw, acl, date, encode) values (?, ?, 'owner', ?, ?)"), [
- flask.session['c_id'],
- flask.session['c_pw'],
- get_time(),
- db_data[0][0]
- ])
- first = 1
- else:
- curs.execute(db_change('select data from other where name = "requires_approval"'))
- requires_approval = curs.fetchall()
- if requires_approval and requires_approval[0][0] == 'on':
- application_token = ''.join(random.choice("0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ") for i in range(60))
- curs.execute(db_change(
- "insert into user_application (id, pw, date, encode, question, answer, token, ip, ua, email) values (?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
- ), [
- flask.session['c_id'],
- flask.session['c_pw'],
- get_time(),
- db_data[0][0],
- flask.session['c_question'],
- flask.session['c_ans'],
- application_token,
- ip,
- flask.request.headers.get('User-Agent'),
- flask.session['c_email']
- ])
- conn.commit()
- flask.session.pop('c_id', None)
- flask.session.pop('c_pw', None)
- flask.session.pop('c_key', None)
- flask.session.pop('c_email', None)
- flask.session.pop('c_question', None)
- flask.session.pop('c_ans', None)
- return redirect('/application_submitted')
- else:
- curs.execute(db_change("insert into user (id, pw, acl, date, encode) values (?, ?, 'user', ?, ?)"), [
- flask.session['c_id'],
- flask.session['c_pw'],
- get_time(),
- db_data[0][0]
- ])
- first = 0
- agent = flask.request.headers.get('User-Agent')
- curs.execute(db_change("insert into user_set (name, id, data) values ('email', ?, ?)"), [
- flask.session['c_id'],
- flask.session['c_email']
- ])
- curs.execute(db_change("insert into ua_d (name, ip, ua, today, sub) values (?, ?, ?, ?, '')"), [
- flask.session['c_id'],
- ip,
- agent,
- get_time()
- ])
- flask.session['id'] = flask.session['c_id']
- flask.session['head'] = ''
- conn.commit()
- else:
- curs.execute(db_change('delete from user_set where name = "email" and id = ?'), [ip])
- curs.execute(db_change('insert into user_set (name, id, data) values ("email", ?, ?)'), [ip, flask.session['c_email']])
- first = 0
- flask.session.pop('c_id', None)
- flask.session.pop('c_pw', None)
- flask.session.pop('c_key', None)
- flask.session.pop('c_email', None)
- if first == 0:
- return redirect('/change')
- else:
- return redirect('/setting')
- else:
- flask.session.pop('c_id', None)
- flask.session.pop('c_pw', None)
- flask.session.pop('c_key', None)
- flask.session.pop('c_email', None)
- return redirect('/user')
- else:
- curs.execute(db_change('select data from other where name = "check_key_text"'))
- sql_d = curs.fetchall()
- if sql_d and sql_d[0][0] != '':
- b_text = sql_d[0][0] + '<hr class=\"main_hr\">'
- else:
- b_text = ''
- return easy_minify(flask.render_template(skin_check(),
- imp = [load_lang('check_key'), wiki_set(), custom(), other2([0, 0])],
- data = '''
- <form method="post">
- ''' + b_text + '''
- <input placeholder="''' + load_lang('key') + '''" name="key" type="text">
- <hr class=\"main_hr\">
- <button type="submit">''' + load_lang('save') + '''</button>
- </form>
- ''',
- menu = [['user', load_lang('return')]]
- ))
|
