Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- def login(user=None):
- if not session.get('key'):
- if request.method == 'POST':
- username = None
- password = None
- if 'username' in request.values:
- username = request.values['username']
- if 'password' in request.values:
- password = request.values['password']
- if 'over' in request.values:
- over = request.values['over']
- link = "https://www.google.com/recaptcha/api/siteverify?secret=6Ldfy3sUAAAAAFj3oiP4weo1L022m9oZRuCFcsG8&response=" + over
- jsonobj = json.loads(urllib.request.urlopen(link).read())
- # print(jsonobj)
- if (username is not None) and (password is not None) and jsonobj['success']:
- conn = mysql.connect()
- cursor = conn.cursor()
- sql = "SELECT * FROM `user` WHERE user_name = %s"
- val = username
- cursor.execute(sql, val)
- res = cursor.fetchall()
- sql = "SELECT * FROM logs WHERE logs.username = %s AND logs.ip ='"+request.remote_addr+"';"
- cursor.execute(sql, val)
- res2 = cursor.fetchall()
- print(len(res2))
- sql = "INSERT INTO logs (ip, username) VALUES ('" + request.remote_addr + "','" + val + "');"
- if len(res) > 0:
- if check_password(res[0][2], password):
- session['key'] = res[0][0]
- session['name'] = res[0][1]
- return redirect("/home")
- else:
- if(len(res2) > 3):
- print("vymaze db")
- sql = "DELETE FROM logs WHERE ip ='"+request.remote_addr+"' AND logs.username=%s;"
- time.sleep(20)
- cursor.execute(sql,val)
- else:
- sql = "INSERT INTO logs (ip, username) VALUES ('" + request.remote_addr + "','" + val + "');"
- cursor.execute(sql)
- return render_template("login.html", name=user)
- else:
- cursor.execute(sql)
- return render_template("login.html", name=user)
- else:
- return redirect("/home")
- return render_template("login.html", name=user)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement