hackeris · March 14, 2023 13:09 · janceko · Oct 6, 2022
diff --git a/webs01.py b/webs01.py
 # -*- coding: utf-8 -*-
 import os
 import sqlite3

 from flask import Flask
 from flask import redirect
 from flask import request
 from flask import session
 from jinja2 import Template

 app = Flask(__name__)

 app.secret_key = 'schrodinger cat'

 DATABASE_PATH = os.path.join(os.path.dirname(__file__), 'database.db')


 def connect_db():
    return sqlite3.connect(DATABASE_PATH)


 def create_tables():
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('''
            CREATE TABLE IF NOT EXISTS user(
            id INTEGER PRIMARY KEY AUTOINCREMENT,
            username VARCHAR(32),
            password VARCHAR(32)
            )''')
    cur.execute('''
        CREATE TABLE IF NOT EXISTS time_line(
        id INTEGER PRIMARY KEY AUTOINCREMENT,
        user_id INTEGER,
        content TEXT,
        FOREIGN KEY (`user_id`) REFERENCES `user`(`id`)
        )''')
    conn.commit()
    conn.close()


 def init_data():
    users = [
        ('user1', '123456'),
        ('user2', '123456')
    ]
    lines = [
        (1, 'Hello'),
        (1, 'World'),
        (2, 'Im 2'),
        (2, 'Hello 2')
    ]
    conn = connect_db()
    cur = conn.cursor()
    cur.executemany('INSERT INTO `user` VALUES(NULL,?,?)', users)
    cur.executemany('INSERT INTO `time_line` VALUES(NULL,?,?)', lines)
    conn.commit()
    conn.close()


 def init():
    create_tables()
    init_data()


 def get_user_from_username_and_password(username, password):
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('SELECT id, username FROM `user` WHERE username=\'%s\' AND password=\'%s\'' % (username, password))
    row = cur.fetchone()
    conn.commit()
    conn.close()

    return {'id': row[0], 'username': row[1]} if row is not None else None


 def get_user_from_id(uid):
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('SELECT id, username FROM `user` WHERE id=%d' % uid)
    row = cur.fetchone()
    conn.commit()
    conn.close()

    return {'id': row[0], 'username': row[1]}


 def create_time_line(uid, content):
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('INSERT INTO `time_line` VALUES (NULL, %d, \'%s\')' % (uid, content))
    row = cur.fetchone()
    conn.commit()
    conn.close()

    return row


 def get_time_lines():
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('SELECT id, user_id, content FROM `time_line` ORDER BY id DESC')
    rows = cur.fetchall()
    conn.commit()
    conn.close()

    return map(lambda row: {'id': row[0], 'user_id': row[1], 'content': row[2]}, rows)


 def user_delete_time_line_of_id(uid, tid):
    conn = connect_db()
    cur = conn.cursor()
    cur.execute('DELETE FROM `time_line` WHERE  user_id=%s AND id=%s' % (uid, tid))
    conn.commit()
    conn.close()


 def render_login_page():
    return '''
 <form method="POST" style="margin: 60px auto; width: 140px;">
    <p><input name="username" type="text" /></p>
    <p><input name="password" type="password" /></p>
    <p><input value="Login" type="submit" /></p>
 </form>
    '''


 def render_home_page(uid):
    user = get_user_from_id(uid)
    time_lines = get_time_lines()
    template = Template('''
 <div style="width: 400px; margin: 80px auto; ">
    <h4>I am: {{ user['username'] }}</h4>

    <form method="POST" action="/create_time_line">
        Add time line:
        <input type="text" name="content" />
        <input type="submit" value="Submit" />
    </form>

    <ul style="border-top: 1px solid #ccc;">
        {% for line in time_lines %}
        <li style="border-top: 1px solid #efefef;">
            <p>{{ line['content'] }}</p>

            {% if line['user_id'] == user['id'] %}
            <a href="/delete/time_line/{{ line['id'] }}">Delete</a>
            {% endif %}

        </li>
        {% endfor %}
    </ul>
 </div>
    ''')
    return template.render(user=user, time_lines=time_lines)


 @app.route('/')
 def index():
    if 'uid' in session:
        return render_home_page(session['uid'])
    return redirect('/login')


 @app.route('/login', methods=['GET', 'POST'])
 def login():
    if request.method == 'GET':
        return render_login_page()
    elif request.method == 'POST':
        username = request.form['username']
        password = request.form['password']
        user = get_user_from_username_and_password(username, password)
        if user is not None:
            session['uid'] = user['id']
            return redirect('/')
        else:
            return redirect('/login')


 @app.route('/create_time_line', methods=['POST'])
 def time_line():
    if 'uid' in session:
        uid = session['uid']
        create_time_line(uid, request.form['content'])
    return redirect('/')


 @app.route('/delete/time_line/<tid>')
 def delete_time_line(tid):
    if 'uid' in session:
        user_delete_time_line_of_id(session['uid'], tid)
    return redirect('/')


 @app.route('/logout')
 def logout():
    if 'uid' in session:
        session.pop('uid')
    return redirect('/login')


 if __name__ == '__main__':
    app.run(debug=True)
	# -- coding: utf-8 --
	import os
	import sqlite3

	from flask import Flask
	from flask import redirect
	from flask import request
	from flask import session
	from jinja2 import Template

	app = Flask(__name__)

	app.secret_key = 'schrodinger cat'

	DATABASE_PATH = os.path.join(os.path.dirname(__file__), 'database.db')


	def connect_db():
	return sqlite3.connect(DATABASE_PATH)


	def create_tables():
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('''
	CREATE TABLE IF NOT EXISTS user(
	id INTEGER PRIMARY KEY AUTOINCREMENT,
	username VARCHAR(32),
	password VARCHAR(32)
	)''')
	cur.execute('''
	CREATE TABLE IF NOT EXISTS time_line(
	id INTEGER PRIMARY KEY AUTOINCREMENT,
	user_id INTEGER,
	content TEXT,
	FOREIGN KEY (`user_id`) REFERENCES `user`(`id`)
	)''')
	conn.commit()
	conn.close()


	def init_data():
	users = [
	('user1', '123456'),
	('user2', '123456')
	]
	lines = [
	(1, 'Hello'),
	(1, 'World'),
	(2, 'Im 2'),
	(2, 'Hello 2')
	]
	conn = connect_db()
	cur = conn.cursor()
	cur.executemany('INSERT INTO `user` VALUES(NULL,?,?)', users)
	cur.executemany('INSERT INTO `time_line` VALUES(NULL,?,?)', lines)
	conn.commit()
	conn.close()


	def init():
	create_tables()
	init_data()


	def get_user_from_username_and_password(username, password):
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('SELECT id, username FROM `user` WHERE username=\'%s\' AND password=\'%s\'' % (username, password))
	row = cur.fetchone()
	conn.commit()
	conn.close()

	return {'id': row[0], 'username': row[1]} if row is not None else None


	def get_user_from_id(uid):
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('SELECT id, username FROM `user` WHERE id=%d' % uid)
	row = cur.fetchone()
	conn.commit()
	conn.close()

	return {'id': row[0], 'username': row[1]}


	def create_time_line(uid, content):
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('INSERT INTO `time_line` VALUES (NULL, %d, \'%s\')' % (uid, content))
	row = cur.fetchone()
	conn.commit()
	conn.close()

	return row


	def get_time_lines():
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('SELECT id, user_id, content FROM `time_line` ORDER BY id DESC')
	rows = cur.fetchall()
	conn.commit()
	conn.close()

	return map(lambda row: {'id': row[0], 'user_id': row[1], 'content': row[2]}, rows)


	def user_delete_time_line_of_id(uid, tid):
	conn = connect_db()
	cur = conn.cursor()
	cur.execute('DELETE FROM `time_line` WHERE user_id=%s AND id=%s' % (uid, tid))
	conn.commit()
	conn.close()


	def render_login_page():
	return '''
	<form method="POST" style="margin: 60px auto; width: 140px;">
	<p><input name="username" type="text" /></p>
	<p><input name="password" type="password" /></p>
	<p><input value="Login" type="submit" /></p>
	</form>
	'''


	def render_home_page(uid):
	user = get_user_from_id(uid)
	time_lines = get_time_lines()
	template = Template('''
	<div style="width: 400px; margin: 80px auto; ">
	<h4>I am: {{ user['username'] }}</h4>

	<form method="POST" action="/create_time_line">
	Add time line:
	<input type="text" name="content" />
	<input type="submit" value="Submit" />
	</form>

	<ul style="border-top: 1px solid #ccc;">
	{% for line in time_lines %}
	<li style="border-top: 1px solid #efefef;">
	<p>{{ line['content'] }}</p>

	{% if line['user_id'] == user['id'] %}
	<a href="/delete/time_line/{{ line['id'] }}">Delete</a>
	{% endif %}

	</li>
	{% endfor %}
	</ul>
	</div>
	''')
	return template.render(user=user, time_lines=time_lines)


	@app.route('/')
	def index():
	if 'uid' in session:
	return render_home_page(session['uid'])
	return redirect('/login')


	@app.route('/login', methods=['GET', 'POST'])
	def login():
	if request.method == 'GET':
	return render_login_page()
	elif request.method == 'POST':
	username = request.form['username']
	password = request.form['password']
	user = get_user_from_username_and_password(username, password)
	if user is not None:
	session['uid'] = user['id']
	return redirect('/')
	else:
	return redirect('/login')


	@app.route('/create_time_line', methods=['POST'])
	def time_line():
	if 'uid' in session:
	uid = session['uid']
	create_time_line(uid, request.form['content'])
	return redirect('/')


	@app.route('/delete/time_line/<tid>')
	def delete_time_line(tid):
	if 'uid' in session:
	user_delete_time_line_of_id(session['uid'], tid)
	return redirect('/')


	@app.route('/logout')
	def logout():
	if 'uid' in session:
	session.pop('uid')
	return redirect('/login')


	if __name__ == '__main__':
	app.run(debug=True)