95 lines
3.2 KiB
Python
95 lines
3.2 KiB
Python
import hashlib
|
|
import string
|
|
from datetime import datetime, timedelta
|
|
|
|
def md5(s):
|
|
'''
|
|
MD5摘要
|
|
:param str: 字符串
|
|
:return: 经MD5以后的字符串
|
|
'''
|
|
h = hashlib.md5(s.encode(encoding='utf-8'))
|
|
return h.hexdigest()
|
|
|
|
# import model.user after the defination of md5(s) to avoid circular import
|
|
from model.user import get_user_by_username, insert_user, update_password_by_username
|
|
|
|
path_prefix = '/var/www/wordfreq/wordfreq/'
|
|
path_prefix = './' # comment this line in deployment
|
|
|
|
def verify_pass(newpass,oldpass):
|
|
if(newpass==oldpass):
|
|
return True
|
|
|
|
|
|
def verify_user(username, password):
|
|
user = get_user_by_username(username)
|
|
encoded_password = md5(username + password)
|
|
return user is not None and user.password == encoded_password
|
|
|
|
|
|
def add_user(username, password):
|
|
start_date = datetime.now().strftime('%Y%m%d')
|
|
expiry_date = (datetime.now() + timedelta(days=30)).strftime('%Y%m%d') # will expire after 30 days
|
|
# 将用户名和密码一起加密,以免暴露不同用户的相同密码
|
|
password = md5(username + password)
|
|
insert_user(username=username, password=password, start_date=start_date, expiry_date=expiry_date)
|
|
|
|
|
|
def check_username_availability(username):
|
|
existed_user = get_user_by_username(username)
|
|
return existed_user is None
|
|
|
|
|
|
def change_password(username, old_password, new_password):
|
|
'''
|
|
修改密码
|
|
:param username: 用户名
|
|
:param old_password: 旧的密码
|
|
:param new_password: 新密码
|
|
:return: 修改成功:True 否则:False
|
|
'''
|
|
if not verify_user(username, old_password): # 旧密码错误
|
|
return False
|
|
# 将用户名和密码一起加密,以免暴露不同用户的相同密码
|
|
if verify_pass(new_password,old_password): #新旧密码一致
|
|
return False
|
|
update_password_by_username(username, new_password)
|
|
return True
|
|
|
|
|
|
def get_expiry_date(username):
|
|
user = get_user_by_username(username)
|
|
if user is None:
|
|
return '20191024'
|
|
else:
|
|
return user.expiry_date
|
|
|
|
class UserName:
|
|
def __init__(self, username):
|
|
self.username = username
|
|
|
|
def validate(self):
|
|
if len(self.username) > 20:
|
|
return f'{self.username} is too long. The user name cannot exceed 20 characters.'
|
|
if self.username.startswith('.'): # a user name must not start with a dot
|
|
return 'Period (.) is not allowed as the first letter in the user name.'
|
|
if ' ' in self.username: # a user name must not include a whitespace
|
|
return 'Whitespace is not allowed in the user name.'
|
|
for c in self.username: # a user name must not include special characters, except non-leading periods or underscores
|
|
if c in string.punctuation and c != '.' and c != '_':
|
|
return f'{c} is not allowed in the user name.'
|
|
if self.username in ['signup', 'login', 'logout', 'reset', 'mark', 'back', 'unfamiliar', 'familiar', 'del', 'admin']:
|
|
return 'You used a restricted word as your user name. Please come up with a better one.'
|
|
|
|
return 'OK'
|
|
|
|
|
|
class WarningMessage:
|
|
def __init__(self, s):
|
|
self.s = s
|
|
|
|
def __str__(self):
|
|
return UserName(self.s).validate()
|
|
|