我正在使用 Python 进行编程,并使用 Flask 框架。我的
redirect()我尝试使用在互联网上找到的不同方法并阅读源代码。我尝试使用
app.redirect()flask.redirect()from flask import Flask, request, render_template, session, redirect
from flask_session import Session
from security_manager import password_hash, password_check
from validate_email_address import validate_email
import json
app = Flask(__name__)
app.config["SESSION_PERMANENT"] = False
app.config["SESSION_TYPE"] = "filesystem"
Session(app)
@app.route("/")
def index():
return "<!DOCTYPE html><a href=\"/signup\">Redirect to Sign-up page</a>"
@app.route("/signup")
def signup():
try:
message = session["signup_error"]
return render_template("signup.htm") + (
"" if "signup_error" not in session else
"<p style=\"color:red;\">" + message + "</p>"
)
except KeyError:
return render_template("signup.htm")
@app.route("/control-signup", methods=["POST"])
def control_signup():
display_name = request.form["display_name"] # Use .args for GET requests,
# .form for POST ones
display_name = secure_signal(display_name)
# Validating username (handle)
username = request.form["username"]
if not username_valid(username):
session["signup_error"] = "Username can only include lowercase" \
" letters a–z, uppercase letters" \
" A–Z, digits 0–9 or an" \
" underscore and must be 4 to 16" \
" characters long."
redirect("/signup")
elif not username_available(username):
session["signup_error"] = "Username is already taken."
redirect("/signup")
# Validating E-Mail address
email = request.form["email"]
if not validate_email(email):
session["signup_error"] = "E-Mail address appears to be invalid."
redirect("/signup")
# Checking if password confirmation is correct
password = request.form["password"]
password_confirmation = request.form["password_confirmation"]
if password != password_confirmation:
session["signup_error"] = "Passwords don't match."
redirect("/signup")
# Checking if password is strong enough.
if not 8 <= len(password):
session["signup_error"] = "Password must at least be 8 characters" \
" long."
redirect("/signup")
digits = ("0", "1", "2", "3", "4", "5", "6", "7", "8", "9")
has_digit = False
for digit in digits:
if digit in password: # If the password has a digit.
has_digit = True
break
if not has_digit:
session["signup_error"] = "Password must include a digit."
redirect("/signup", code=302)
# Everything is fine. Create the account.
users_db = json.load(open("users.json", "r"))
# Hashing the password
hashed_password = password_hash(password)
user = {
"username": username,
"email": email,
"password": hashed_password,
"display_name": display_name,
"bio": ""
}
users_db.append(user)
with open("users.json", "w") as file:
file.write(json.dumps(users_db, indent=4))
return render_template("signup_complete.htm")
@app.route("/log-in")
def log_in():
if "login_error" in session:
return render_template("log-in.htm") + ("<span style=\"color:red\">" +
session["login_error"] +
"</span>")
else:
return render_template("log-in.htm")
@app.route("/control-login", methods=["POST"])
def control_login():
email_or_username = request.form["email_or_username"]
password = request.form["password"]
login_meth = request.form["login_meth"]
user_db = json.load(open("users.json", "r"))
for user in user_db:
if user["email" if login_meth == "email" else "username"]\
== email_or_username and\
password_check(password, user["password"]):
session["is_logged_in"] = True
if session["is_logged_in"]:
return "<h1>Successfully logged you in</h1>"
else:
session["login_error"] = "Username, E-Mail or password incorrect."
redirect("/log-in")
def secure_signal(message: str) -> str:
return (message
.replace("&", "&")
.replace("<", "<")
.replace(">", ">")
.replace("'", "'")
.replace("\"", """)
)
def username_valid(username: str) -> bool:
"""
:param username: Username you want to validate.
:return: Boolean "True" if the username is valid and "False if the
username is invalid
"""
# Checking if the username has illegal characters
legal_characters = ("a", "b", "c", "d", "e", "f", "g", "h", "i", "j", "k",
"l", "m", "n", "o", "p", "q", "r", "s", "t", "u", "v",
"w", "x", "y", "z", "A", "B", "C", "D", "E", "F", "G",
"H", "I", "J", "K", "L", "M", "N", "O", "P", "Q", "R",
"S", "T", "U", "V", "W", "X", "Y", "Z", "0", "1", "2",
"3", "4", "5", "6", "7", "8", "9", "_")
for letter in username:
if letter not in legal_characters:
return False
# Checking if username is short/long enough
if not 4 <= len(username) <= 16:
return False
def username_available(username: str) -> bool:
# Checking if the username is already taken
users_db = json.load(open("users.json", "r"))
for user in users_db:
if user["username"].lower() == username.lower():
# I type ".lower()" because I don't want the usernames to be
# case-sensitive.
return False
del users_db
return True
def email_available(email: str) -> bool:
# Checking if the username is already taken
users_db = json.load(open("users.json", "r"))
for user in users_db:
if user["email"].lower() == email.lower():
# I type ".lower()" because I don't want the usernames to be
# case-sensitive.
return False
del users_db
return True
if __name__ == "__main__":
app.run(debug=True)
from flask import Flask, flash, redirect, render_template, request, session, abort, send_file
import os
import sqlite3
app = Flask(__name__)
# -- Connect to Databse --
def connect():
connection = sqlite3.connect("database.db")
cursor = connection.cursor()
return connection, cursor
# -- Home Page --
@app.route('/')
def home():
if "username" in session:
username = session["username"]
else:
username = "user"
return render_template("welcome.html",username=username)
# -- Login --
@app.route('/login', methods=['POST', 'GET'])
def login():
incorrect_info=False
if request.method == "POST":
username = request.form['username']
password = request.form['password']
connection, cursor = connect()
cursor.execute(f'SELECT "password" FROM users WHERE username = "{username}"')
from_db = cursor.fetchone()
connection.close()
if from_db is None or password != from_db[0]:
incorrect_info = True
return render_template("login.html", incorrect=incorrect_info)
else:
session["username"] = username
return redirect("/")
else:
return render_template("login.html", incorrect=incorrect_info)
# -- Create Account --
@app.route('/create_account', methods=['POST', 'GET'])
def create_account():
if request.method == "POST":
username = request.form['username']
password = request.form['password']
email = request.form['email']
if username != "" or password != "" or email != "":
user_info = (username, password, email)
connection, cursor = connect()
cursor.execute('INSERT INTO "users" (username, password, email) VALUES (?, ?, ?)', user_info)
connection.commit()
connection.close()
session['username'] = username
return redirect('/')
else:
return render_template("create.html")
if __name__ == "__main__":
app.secret_key = os.urandom(12)
app.run(debug=True, host="0.0.0.0", port=80)