Halaman utama Jelajahi Bantuan
Masuk
raylu
/
sysvitals
1
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: fd967c8cd3
Ranting Tag
sysvitals
/
web
/
db.py

db.py 2.3 KB
Riwayat Mentahan

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. from collections import defaultdict
    2. 

  2. import hashlib
    3. 

  3. import hmac
    4. 

  4. import binascii
    5. 

  5. import os
    6. 

  6. 

  7. import tornado.gen
    8. 

  8. import psycopg2
    9. 

  9. import momoko
    10. 

  10. 

  11. import config
    12. 

  12. 

  13. def hash_pw(password, salt=None):
    14. 

  14. 	if salt is None:
    15. 

  15. 		salt = os.urandom(16)
    16. 

  16. 	h = hmac.new(salt, password.encode('utf-8'), hashlib.sha256)
    17. 

  17. 	hashed = h.hexdigest()
    18. 

  18. 	salt_hex = binascii.hexlify(salt).decode()
    19. 

  19. 	return hashed, salt_hex
    20. 

  20. 

  21. class MomokoDB:
    22. 

  22. 	db = momoko.Pool(dsn='dbname=%s user=%s' % (config.database, config.db_user), size=2)
    23. 

  23. 

  24. 	@tornado.gen.coroutine
    25. 

  25. 	def execute(self, query, *args):
    26. 

  26. 		result = yield momoko.Op(self.db.execute, query, args, cursor_factory=psycopg2.extras.DictCursor)
    27. 

  27. 		return result
    28. 

  28. 

  29. 	@tornado.gen.coroutine
    30. 

  30. 	def create_user(self, username, password):
    31. 

  31. 		hashed_password, salt = hash_pw(password)
    32. 

  32. 		query = 'INSERT INTO users (username, password, salt) VALUES (%s, %s, %s) RETURNING id;'
    33. 

  33. 		cursor = yield self.execute(query, username, hashed_password, salt)
    34. 

  34. 		return cursor.fetchone()['id']
    35. 

  35. 

  36. 	@tornado.gen.coroutine
    37. 

  37. 	def check_user(self, username, password):
    38. 

  38. 		query = 'SELECT id, username, password, salt FROM users WHERE username=%s;'
    39. 

  39. 		cursor = yield self.execute(query, username)
    40. 

  40. 		user = cursor.fetchone()
    41. 

  41. 		if not user:
    42. 

  42. 			return
    43. 

  43. 		salt = binascii.unhexlify(bytes(user['salt'], 'ascii'))
    44. 

  44. 		hashed, _ = hash_pw(password, salt)
    45. 

  45. 		if hashed == user['password']:
    46. 

  46. 			return user
    47. 

  47. 

  48. 	@tornado.gen.coroutine
    49. 

  49. 	def create_group(self, user_id, group_name):
    50. 

  50. 		cursor = yield self.execute('INSERT INTO groups (name) VALUES(%s) RETURNING id;', group_name)
    51. 

  51. 		group_id = cursor.fetchone()['id']
    52. 

  52. 		yield self.execute('INSERT INTO user_groups (user_id, group_id) VALUES(%s, %s);', user_id, group_id)
    53. 

  53. 		return group_id
    54. 

  54. 

  55. 	@tornado.gen.coroutine
    56. 

  56. 	def get_groups(self, user_id):
    57. 

  57. 		cursor = yield self.execute('''
    58. 

  58. 			SELECT groups.id, groups.name FROM user_groups
    59. 

  59. 			JOIN groups ON user_groups.group_id = groups.id
    60. 

  60. 			WHERE user_id = %s;
    61. 

  61. 		''', user_id)
    62. 

  62. 		return cursor.fetchall()
    63. 

  63. 

  64. 	@tornado.gen.coroutine
    65. 

  65. 	def get_servers(self, user_id):
    66. 

  66. 		cursor = yield self.execute('''
    67. 

  67. 			SELECT servers.id, servers.group_id, servers.hostname FROM user_groups
    68. 

  68. 			JOIN servers ON user_groups.group_id = servers.group_id
    69. 

  69. 			WHERE user_id = %s;
    70. 

  70. 		''', user_id)
    71. 

  71. 		servers = defaultdict(list)
    72. 

  72. 		for row in cursor.fetchall():
    73. 

  73. 			servers[row['group_id']].append(row)
    74. 

  74. 		return servers
    75.