wiki
/
openNAMU__openNAMU
mirror of https://github.com/openNAMU/openNAMU.git


			
				
					
						
						
							1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283
							from .tool.func import *

def user_setting_pw():
    with get_db_connect() as conn:
        curs = conn.cursor()

        if ban_check() == 1:
            return re_error('/ban')

        ip = ip_check()
        if ip_or_user(ip) != 0:
            return redirect('/login')

        if flask.request.method == 'POST':
            user_pw_now = flask.request.form.get('password_now', '')
            user_pw = flask.request.form.get('password_new', '')
            user_repeat = flask.request.form.get('password_new_repeat', '')
        
            # PW 검증
            if user_pw == '':
                return re_error('/error/27')

            if user_pw != user_repeat:
                return re_error('/error/20')
    
            # PW 길이 제한
            curs.execute(db_change("select data from other where name = 'password_min_length'"))
            db_data = curs.fetchall()
            if db_data and db_data[0][0] != '':
                password_min_length = int(number_check(db_data[0][0]))
                if password_min_length > len(user_pw):
                    return re_error('/error/40')

            curs.execute(db_change("select data from user_set where id = ? and name = 'pw'"), [ip])
            db_data = curs.fetchall()
            if not db_data:
                return re_error('/error/2')
            else:
                db_user_pw = db_data[0][0]
                
            curs.execute(db_change("select data from user_set where id = ? and name = 'encode'"), [ip])
            db_data = curs.fetchall()
            if not db_data:
                return re_error('/error/2')
            else:
                db_user_encode = db_data[0][0]
                
            if pw_check(user_pw_now, db_user_pw, db_user_encode, ip) != 1:
                return re_error('/error/10')

            curs.execute(db_change("update user_set set data = ? where id = ? and name = 'pw'"), [pw_encode(user_pw), ip])
            
            conn.commit()

            return redirect('/user')
        else:
            curs.execute(db_change("select data from other where name = 'password_min_length'"))
            db_data = curs.fetchall()
            if db_data and db_data[0][0] != '':
                password_min_length = ' (' + load_lang('password_min_length') + ' : ' + db_data[0][0] + ')'
            else:
                password_min_length = ''
            
            return easy_minify(flask.render_template(skin_check(),
                imp = [load_lang('password_change'), wiki_set(), wiki_custom(), wiki_css([0, 0])],
                data = '''
                    <form method="post">
                        <input placeholder="''' + load_lang('now_password') + '''" name="password_now" type="password">
                        <hr class="main_hr">
                        
                        <input placeholder="''' + load_lang('new_password') + password_min_length + '''" name="password_new" type="password">
                        <hr class="main_hr">
                        
                        <input placeholder="''' + load_lang('password_confirm') + '''" name="password_new_repeat" type="password">
                        <hr class="main_hr">
                        
                        <button type="submit">''' + load_lang('save') + '''</button>
                        
                        ''' + http_warning() + '''
                    </form>
                ''',
                menu = [['change', load_lang('return')]]
            ))