moonq/qgreper
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Implement password change

Browse Source
This commit is contained in:
David Hoppenbrouwers
2022-10-09 14:22:38 +02:00
parent ba5123068a
commit 398858c34b
3 changed files with 47 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
db/sqlite.py
View File

@@ -135,6 +135,24 @@ class DB:
(username,) (username,)
).fetchone() ).fetchone()
def get_user_password_by_id(self, user_id):
return self._db().execute('''
select password
from users
where user_id = ?
''',
(user_id,)
).fetchone()
def set_user_password(self, user_id, password):
return self.change_one('''
update users
set password = ?
where user_id = ?
''',
(password, user_id)
)
def get_user_public_info(self, user_id): def get_user_public_info(self, user_id):
return self._db().execute(''' return self._db().execute('''
select name, about select name, about

20
main.py
View File

@@ -134,6 +134,26 @@ def user_edit():
about = about about = about
) )
@app.route('/user/edit/password/', methods = ['POST'])
def user_edit_password():
user_id = session.get('user_id')
if user_id is None:
return redirect(url_for('login'))
new = request.form['new']
if len(new) < 8:
flash('New password must be at least 8 characters long', 'error')
else:
hash, = db.get_user_password_by_id(user_id)
if verify_password(request.form['old'], hash):
if db.set_user_password(user_id, hash_password(new)):
flash('Updated password', 'success')
else:
flash('Failed to update password', 'error')
else:
flash('Old password does not match', 'error')
return redirect(url_for('user_edit'))
@app.route('/user/<int:user_id>/') @app.route('/user/<int:user_id>/')
def user_info(user_id): def user_info(user_id):
name, about = db.get_user_public_info(user_id) name, about = db.get_user_public_info(user_id)

10
templates/user_edit.html
View File

@@ -7,7 +7,15 @@
<tr><td>Username</td><td>{{ user.name }}</td></tr> <tr><td>Username</td><td>{{ user.name }}</td></tr>
<tr><td>ID</td><td>{{ user.id }}</td></tr> <tr><td>ID</td><td>{{ user.id }}</td></tr>
<tr><td>About</td><td><textarea name="about">{{ about }}</textarea></td></tr> <tr><td>About</td><td><textarea name="about">{{ about }}</textarea></td></tr>
</form>
</table> </table>
<input type="submit" value="Update"> <input type="submit" value="Update">
</form>
<br>
<form method="post" action=edit/password/>
<table>
<tr><td>Old password</td><td><input type=password name=old></td></tr>
<tr><td>New password</td><td><input type=password name=new></td></tr>
</table>
<input type="submit" value="Set password">
</form>
{% endblock %} {% endblock %}