CDCC
/
registro_escolar
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
暫無描述
13 提交
4 分支
目錄樹: d0b5587e63
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 'd0b5587e63'
${ noResults }
registro_escolar/authlib.py

authlib.py 3.0KB
歷史記錄 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. 

  2. import hashlib, time, json

  3. from cryptography.fernet import Fernet

  4. from connect import connection, engine, metadata

  5. import sqlalchemy as db

  6. 

  7. def hash_pass(password):

  8.     return hashlib.sha256(password.encode()).hexdigest()

  9. 

  10. class Auth:

  11.     def __init__(self, session, expire=0):

  12.         self.session = session

  13.         self.id = None

  14.         self.email = None

  15.         self.fernet = Fernet(b'3UH3USxvBcFITpnVa2gvTUIMO5jbc8jqU_Q1O6SNBLs=')

  16. 

  17.         if session.get("id"):

  18.             value = json.loads(self.fernet.decrypt(session["id"]))

  19.             self.id = value["id"]

  20.             self.email = value["email"]

  21.         # Remember to always change

  22.         self.expire=expire

  23. 

  24.     def checkAuth(self):

  25.         if self.expire and time.time() - self.session["tiempo"] > self.expire:

  26.             self.delAuth()

  27.         else:

  28.             self.session["tiempo"] = time.time()

  29. 

  30.         return self.session.get("gallitosccom")

  31. 

  32.     def setAuth(self, id, email):

  33.         self.session["gallitosccom"] = True

  34.         self.id = id

  35.         self.email = email

  36.         # self.session["id"] = id

  37.         # self.session["email"] = email

  38.         self.session["id"] = self.fernet.encrypt(json.dumps({"id": id, "email": email}))_

  39.         if self.expire:

  40.             self.session["tiempo"] = time.time()

  41. 

  42.     def delAuth(self):

  43.         if self.session.get("gallitosccom"):

  44.             self.session.pop("gallitosccom", None)

  45.             self.session.pop("id", None)

  46.             # self.session.pop("email", None)

  47. 

  48.     def do_login(self, username, password):

  49.         password = hash_pass(password)

  50.         usuarios = db.Table('usuarios', metadata, autoload=True, autoload_with=engine)

  51.         query = db.select([usuarios])

  52.         if username.find("@") > 1:

  53.             print("email")

  54.             query = query.select_from(usuarios).where(usuarios.columns.email == username)

  55.         else:

  56.             print("username")

  57.             query = query.select_from(usuarios).where(usuarios.columns.username == username)

  58. 

  59.         result = connection.execute(query).fetchone()

  60.         if result and password == result["password"]:

  61.             print(result)

  62.             self.setAuth(result["id"], result["email"])

  63.             # Añadir feature de last login.

  64.             return True

  65. 

  66.         return False

  67. 

  68.     def checkRole(self, tipo):

  69.         tables = {"admin": "administracion", "madre": "madres", "enfermera":"enfermeras", "facultad": "facultad", "estudiante": "estudiantes"}

  70.         if tipo in tables:

  71.             table = tables[tipo]

  72.         else:

  73.             return False

  74. 

  75.         usuarios = db.Table('usuarios', metadata, autoload=True, autoload_with=engine)

  76.         role = db.Table(table, metadata, autoload=True, autoload_with=engine)

  77.         query = db.select([usuarios, role])

  78.         query = query.select_from(usuarios.join(role, usuarios.columns.id == role.columns.user_id)).where(role.columns.user_id == self.id)

  79.         result = connection.execute(query).fetchone()

  80. 

  81.         if result:

  82.             return True

  83. 

  84.         return False

  85. 

  86.     def do_logout(self):

  87.         self.delAuth()