Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
H
hunter-ht.cn
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
刘莹莹
hunter-ht.cn
Commits
8ea728ca
Commit
8ea728ca
authored
May 21, 2020
by
Xu Zhou
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
增加了所有接口的csrf验证。
parent
c130850a
Hide whitespace changes
Inline
Side-by-side
Showing
9 changed files
with
42 additions
and
44 deletions
+42
-44
models.py
hunter/models.py
+1
-1
admin.html
hunter/templates/admin.html
+1
-1
editArticle.html
hunter/templates/editArticle.html
+1
-0
index.html
hunter/templates/index.html
+4
-10
profile.html
hunter/templates/profile.html
+4
-3
user.html
hunter/templates/user.html
+8
-7
write.html
hunter/templates/write.html
+1
-0
view_api.py
hunter/views/view_api.py
+18
-17
view_page.py
hunter/views/view_page.py
+4
-5
No files found.
hunter/models.py
View file @
8ea728ca
...
@@ -49,7 +49,7 @@ class Publications(models.Model):
...
@@ -49,7 +49,7 @@ class Publications(models.Model):
isOpen
=
models
.
CharField
(
max_length
=
5
,
default
=
'1'
)
isOpen
=
models
.
CharField
(
max_length
=
5
,
default
=
'1'
)
editDateTime
=
models
.
DateField
(
default
=
timezone
.
now
)
editDateTime
=
models
.
DateField
(
default
=
timezone
.
now
)
# *Pubs vs *Users
class
PubToUser
(
models
.
Model
):
class
PubToUser
(
models
.
Model
):
pubID
=
models
.
BigIntegerField
()
pubID
=
models
.
BigIntegerField
()
username
=
models
.
CharField
(
max_length
=
50
)
username
=
models
.
CharField
(
max_length
=
50
)
...
...
hunter/templates/admin.html
View file @
8ea728ca
...
@@ -11,6 +11,7 @@
...
@@ -11,6 +11,7 @@
<script
src=
"{% static 'jquery.form.js' %}"
></script>
<script
src=
"{% static 'jquery.form.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md5.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md5.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'common.js' %}"
charset=
"UTF-8"
></script>
</head>
</head>
<body>
<body>
...
@@ -234,7 +235,6 @@
...
@@ -234,7 +235,6 @@
data
[
'password'
]
=
$
(
'input'
)[
1
].
value
;
data
[
'password'
]
=
$
(
'input'
)[
1
].
value
;
data
[
'actiontype'
]
=
'0'
;
//0 添加用户 1 删除用户
data
[
'actiontype'
]
=
'0'
;
//0 添加用户 1 删除用户
encryptSend
(
'/operator/'
,
data
);
// Jsencrypt.do对应服务端处理地址
encryptSend
(
'/operator/'
,
data
);
// Jsencrypt.do对应服务端处理地址
console
.
log
(
"add user: username = "
+
username
);
});
});
});
});
...
...
hunter/templates/editArticle.html
View file @
8ea728ca
...
@@ -9,6 +9,7 @@
...
@@ -9,6 +9,7 @@
<link
rel=
"stylesheet"
type=
"text/css"
href=
"{% static 'md/markdown.css' %}"
>
<link
rel=
"stylesheet"
type=
"text/css"
href=
"{% static 'md/markdown.css' %}"
>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'common.js' %}"
charset=
"UTF-8"
></script>
</head>
</head>
<body>
<body>
<nav>
<nav>
...
...
hunter/templates/index.html
View file @
8ea728ca
...
@@ -339,15 +339,7 @@
...
@@ -339,15 +339,7 @@
$
(
'#former_member'
).
css
(
'left'
,
'-100%'
);
$
(
'#former_member'
).
css
(
'left'
,
'-100%'
);
}
}
/*
function logout(){
let storage = window.localStorage;
storage['username']="";
storage['password']="";
$('#top_bar').empty();
$('#top_bar').append("<ul><li onclick='login()'>登录</li></ul>");
}
*/
function
click_bar
(
index
){
function
click_bar
(
index
){
let
a_list
=
document
.
getElementsByClassName
(
"main_bar"
);
let
a_list
=
document
.
getElementsByClassName
(
"main_bar"
);
$
(
a_list
[
pre_clicked
]).
removeClass
(
'active'
);
$
(
a_list
[
pre_clicked
]).
removeClass
(
'active'
);
...
@@ -376,6 +368,7 @@
...
@@ -376,6 +368,7 @@
data
:{
data
:{
"username"
:
username
,
"username"
:
username
,
"password"
:
hex_md5
(
password
),
"password"
:
hex_md5
(
password
),
'csrfmiddlewaretoken'
:
'{{ csrf_token }}'
},
},
success
:
function
(
response
){
success
:
function
(
response
){
console
.
log
(
response
);
console
.
log
(
response
);
...
@@ -392,7 +385,7 @@
...
@@ -392,7 +385,7 @@
}
}
},
},
error
:
function
(
xhr
)
{
error
:
function
(
xhr
)
{
console
.
error
(
'
something went wrong
...'
);
console
.
error
(
'
login error
...'
);
login_fail
(
"something went wrong..."
);
login_fail
(
"something went wrong..."
);
}
}
})
})
...
@@ -424,6 +417,7 @@
...
@@ -424,6 +417,7 @@
dataType
:
'json'
,
dataType
:
'json'
,
data
:{
data
:{
"user_id"
:
user_id
,
"user_id"
:
user_id
,
'csrfmiddlewaretoken'
:
'{{ csrf_token }}'
},
},
success
:
function
(
response
){
success
:
function
(
response
){
console
.
log
(
response
);
console
.
log
(
response
);
...
...
hunter/templates/profile.html
View file @
8ea728ca
...
@@ -6,6 +6,7 @@
...
@@ -6,6 +6,7 @@
{% load static %}
{% load static %}
<script
src=
"{% static 'jquery-1.9.1.min.js' %}"
></script>
<script
src=
"{% static 'jquery-1.9.1.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md5.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md5.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'common.js' %}"
charset=
"UTF-8"
></script>
</head>
</head>
<style
type=
"text/css"
>
<style
type=
"text/css"
>
*
{
*
{
...
@@ -173,7 +174,7 @@
...
@@ -173,7 +174,7 @@
outline
:
none
;
outline
:
none
;
overflow
:
hidden
;
overflow
:
hidden
;
background-size
:
contain
;
background-size
:
contain
;
background-image
:
url("/static/
hunter/
images/add.png")
;
background-image
:
url("/static/images/add.png")
;
}
}
.dele_edu
{
.dele_edu
{
width
:
110px
;
width
:
110px
;
...
@@ -183,7 +184,7 @@
...
@@ -183,7 +184,7 @@
width
:
20px
;
width
:
20px
;
height
:
20px
;
height
:
20px
;
border
:
none
;
border
:
none
;
background-image
:
url("/static/
hunter/
images/delete.png")
;
background-image
:
url("/static/images/delete.png")
;
}
}
...
@@ -384,7 +385,7 @@
...
@@ -384,7 +385,7 @@
}
}
},
},
error
:
function
(
xhr
)
{
error
:
function
(
xhr
)
{
console
.
error
(
'
something went wrong
...'
);
console
.
error
(
'
Modify personal resume failed
...'
);
}
}
})
})
}
}
...
...
hunter/templates/user.html
View file @
8ea728ca
...
@@ -123,7 +123,7 @@
...
@@ -123,7 +123,7 @@
{% for cve in cve_list %}
{% for cve in cve_list %}
<ul
id=
"cveid{{ cve.identifier }}"
>
<ul
id=
"cveid{{ cve.identifier }}"
>
<li
class=
"cve_big_text"
><a
href=
"{{ cve.url }}"
target=
"_blank"
>
{{ cve.identifier }}
</a></li>
<li
class=
"cve_big_text"
><a
href=
"{{ cve.url }}"
target=
"_blank"
>
{{ cve.identifier }}
</a></li>
<li
class=
"li_right"
><button
class=
"dele_img"
onclick=
"deleCVE(
{{ cve.identifier }}
)"
></button></li>
<li
class=
"li_right"
><button
class=
"dele_img"
onclick=
"deleCVE(
'{{ cve.identifier }}'
)"
></button></li>
<li
class=
"li_right"
><button
class=
"edit_img"
onclick=
"create_cve_edit_html(this)"
></button></li>
<li
class=
"li_right"
><button
class=
"edit_img"
onclick=
"create_cve_edit_html(this)"
></button></li>
<li
class=
"li_right"
>
{{ cve.datetime }}
</li>
<li
class=
"li_right"
>
{{ cve.datetime }}
</li>
<li
class=
"li_right"
>
{{ cve.bugType }}
</li>
<li
class=
"li_right"
>
{{ cve.bugType }}
</li>
...
@@ -193,9 +193,10 @@
...
@@ -193,9 +193,10 @@
</div>
</div>
</footer>
</footer>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap-datetimepicker.js' %}"
charset=
"UTF-8"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap-datetimepicker.js' %}"
charset=
"UTF-8"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap-datetimepicker.zh-CN.js' %}"
charset=
"UTF-8"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap-datetimepicker.zh-CN.js' %}"
charset=
"UTF-8"
></script>
<script
type=
"text/javascript"
>
<script
type=
"text/javascript"
src=
"{% static 'common.js' %}"
charset=
"UTF-8"
></script>
<script
type=
"text/javascript"
>
$
(
'.form_datetime'
).
datetimepicker
({
$
(
'.form_datetime'
).
datetimepicker
({
//language: 'fr',
//language: 'fr',
weekStart
:
1
,
weekStart
:
1
,
...
@@ -230,7 +231,6 @@
...
@@ -230,7 +231,6 @@
</script>
</script>
<script
type=
"text/javascript"
>
<script
type=
"text/javascript"
>
function
postAdminPage
(){
function
postAdminPage
(){
console
.
log
(
"call function postAdminPage"
);
console
.
log
(
"call function postAdminPage"
);
$
.
post
(
"../../ht/admin/"
,
{
username
:
"John"
,
time
:
"2pm"
}
);
//Your values here..
$
.
post
(
"../../ht/admin/"
,
{
username
:
"John"
,
time
:
"2pm"
}
);
//Your values here..
...
@@ -491,7 +491,7 @@
...
@@ -491,7 +491,7 @@
let
date
=
$
(
'#date_input'
).
val
();
let
date
=
$
(
'#date_input'
).
val
();
let
software
=
$
(
"input[name='software']"
).
val
();
let
software
=
$
(
"input[name='software']"
).
val
();
let
url_cve
=
$
(
"input[name='url_cve']"
).
val
();
let
url_cve
=
$
(
"input[name='url_cve']"
).
val
();
if
(
url_cve
.
indexOf
(
'http'
)
===
-
1
){
if
(
url_cve
.
indexOf
(
'http'
)
===
-
1
){
url_cve
=
'http://'
+
url_cve
;
url_cve
=
'http://'
+
url_cve
;
}
}
let
formatData
=
new
FormData
();
let
formatData
=
new
FormData
();
...
@@ -500,7 +500,8 @@
...
@@ -500,7 +500,8 @@
formatData
.
append
(
"bugType"
,
bugtype
);
formatData
.
append
(
"bugType"
,
bugtype
);
formatData
.
append
(
"software"
,
software
);
formatData
.
append
(
"software"
,
software
);
formatData
.
append
(
"date"
,
date
);
formatData
.
append
(
"date"
,
date
);
formatData
.
append
(
"url"
,
url_cve
);
formatData
.
append
(
"url"
,
url_cve
);
$
.
ajax
({
$
.
ajax
({
url
:
"{% url 'hunter:add_cve' %} "
,
url
:
"{% url 'hunter:add_cve' %} "
,
...
...
hunter/templates/write.html
View file @
8ea728ca
...
@@ -9,6 +9,7 @@
...
@@ -9,6 +9,7 @@
<link
rel=
"stylesheet"
type=
"text/css"
href=
"{% static 'md/markdown.css' %}"
>
<link
rel=
"stylesheet"
type=
"text/css"
href=
"{% static 'md/markdown.css' %}"
>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'md/showdown.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'bootstrap.min.js' %}"
></script>
<script
type=
"text/javascript"
src=
"{% static 'common.js' %}"
charset=
"UTF-8"
></script>
</head>
</head>
<body>
<body>
<nav>
<nav>
...
...
hunter/views/view_api.py
View file @
8ea728ca
...
@@ -17,7 +17,7 @@ from django.db.models.aggregates import Count
...
@@ -17,7 +17,7 @@ from django.db.models.aggregates import Count
from
django.db.models
import
Count
from
django.db.models
import
Count
from
django.views.decorators.csrf
import
ensure_csrf_cookie
from
django.views.decorators.csrf
import
ensure_csrf_cookie
@csrf_exempt
def
login
(
request
):
def
login
(
request
):
username
=
request
.
POST
[
'username'
]
username
=
request
.
POST
[
'username'
]
password
=
request
.
POST
[
'password'
]
password
=
request
.
POST
[
'password'
]
...
@@ -36,7 +36,7 @@ def login(request):
...
@@ -36,7 +36,7 @@ def login(request):
response
=
JsonResponse
({
"message"
:
"密码错误"
})
response
=
JsonResponse
({
"message"
:
"密码错误"
})
return
response
return
response
@csrf_exempt
def
logout
(
request
):
def
logout
(
request
):
print
(
'call logout'
)
print
(
'call logout'
)
request
.
session
[
'user_id'
]
=
None
request
.
session
[
'user_id'
]
=
None
...
@@ -44,7 +44,7 @@ def logout(request):
...
@@ -44,7 +44,7 @@ def logout(request):
return
response
return
response
@csrf_exempt
def
profile_submit
(
request
):
def
profile_submit
(
request
):
userID
=
request
.
POST
[
"userID"
]
userID
=
request
.
POST
[
"userID"
]
name_hanzi
=
request
.
POST
[
"name_hanzi"
]
name_hanzi
=
request
.
POST
[
"name_hanzi"
]
...
@@ -86,7 +86,7 @@ def profile_submit(request):
...
@@ -86,7 +86,7 @@ def profile_submit(request):
return
JsonResponse
({
"message"
:
0
,
'error'
:
e
})
return
JsonResponse
({
"message"
:
0
,
'error'
:
e
})
@csrf_exempt
def
save_edit_art
(
request
):
def
save_edit_art
(
request
):
userID
=
request
.
POST
.
get
(
'userID'
,
''
)
userID
=
request
.
POST
.
get
(
'userID'
,
''
)
title
=
request
.
POST
.
get
(
'title'
,
''
)
title
=
request
.
POST
.
get
(
'title'
,
''
)
...
@@ -109,7 +109,7 @@ def save_edit_art(request):
...
@@ -109,7 +109,7 @@ def save_edit_art(request):
if
int
(
is_have_file
)
>
0
:
if
int
(
is_have_file
)
>
0
:
myfile
=
request
.
FILES
[
'myfile'
]
myfile
=
request
.
FILES
[
'myfile'
]
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
destination
=
os
.
path
.
join
(
BASE_DIR
,
'
hunter'
,
'
static'
,
'articles'
,
myfile
.
name
)
destination
=
os
.
path
.
join
(
BASE_DIR
,
'static'
,
'articles'
,
myfile
.
name
)
if
os
.
path
.
exists
(
destination
):
if
os
.
path
.
exists
(
destination
):
os
.
remove
(
destination
)
os
.
remove
(
destination
)
with
open
(
destination
,
'wb+'
)
as
dest
:
with
open
(
destination
,
'wb+'
)
as
dest
:
...
@@ -161,7 +161,7 @@ def add_url_article(request):
...
@@ -161,7 +161,7 @@ def add_url_article(request):
response
=
JsonResponse
({
"message"
:
0
,
'error'
:
'数据库错误'
})
response
=
JsonResponse
({
"message"
:
0
,
'error'
:
'数据库错误'
})
return
response
return
response
@csrf_exempt
def
delete_publication
(
request
):
def
delete_publication
(
request
):
pub_id
=
request
.
POST
[
'pub_id'
]
pub_id
=
request
.
POST
[
'pub_id'
]
print
(
pub_id
)
print
(
pub_id
)
...
@@ -175,7 +175,7 @@ def delete_publication(request):
...
@@ -175,7 +175,7 @@ def delete_publication(request):
return
response
return
response
@csrf_exempt
def
delete_cve
(
request
):
def
delete_cve
(
request
):
cve_id
=
request
.
POST
[
'cve_id'
]
cve_id
=
request
.
POST
[
'cve_id'
]
try
:
try
:
...
@@ -187,7 +187,7 @@ def delete_cve(request):
...
@@ -187,7 +187,7 @@ def delete_cve(request):
return
response
return
response
@csrf_exempt
def
delete_article
(
request
):
def
delete_article
(
request
):
article_id
=
request
.
POST
[
'article_id'
]
article_id
=
request
.
POST
[
'article_id'
]
try
:
try
:
...
@@ -199,7 +199,7 @@ def delete_article(request):
...
@@ -199,7 +199,7 @@ def delete_article(request):
return
response
return
response
@csrf_exempt
def
change_pub_status
(
request
):
def
change_pub_status
(
request
):
pubID
=
request
.
POST
[
'pubID'
]
pubID
=
request
.
POST
[
'pubID'
]
isOpen
=
request
.
POST
[
'isOpen'
]
isOpen
=
request
.
POST
[
'isOpen'
]
...
@@ -210,7 +210,7 @@ def change_pub_status(request):
...
@@ -210,7 +210,7 @@ def change_pub_status(request):
except
ObjectDoesNotExist
as
e
:
except
ObjectDoesNotExist
as
e
:
return
JsonResponse
({
'message'
:
0
,
'error'
:
e
})
return
JsonResponse
({
'message'
:
0
,
'error'
:
e
})
@csrf_exempt
def
add_publication
(
request
):
def
add_publication
(
request
):
title
=
request
.
POST
[
'title'
]
title
=
request
.
POST
[
'title'
]
print
(
title
)
print
(
title
)
...
@@ -234,7 +234,7 @@ def add_publication(request):
...
@@ -234,7 +234,7 @@ def add_publication(request):
else
:
else
:
pubID
=
Publications
.
objects
.
last
()
.
pubID
+
1
pubID
=
Publications
.
objects
.
last
()
.
pubID
+
1
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
destination
=
os
.
path
.
join
(
BASE_DIR
,
'hunter'
,
'static'
,
'publications'
,
myfile
.
name
)
destination
=
os
.
path
.
join
(
BASE_DIR
,
'static'
,
'publications'
,
myfile
.
name
)
if
os
.
path
.
exists
(
destination
):
if
os
.
path
.
exists
(
destination
):
os
.
remove
(
destination
)
os
.
remove
(
destination
)
with
open
(
destination
,
'wb+'
)
as
dest
:
with
open
(
destination
,
'wb+'
)
as
dest
:
...
@@ -291,7 +291,7 @@ def add_publication(request):
...
@@ -291,7 +291,7 @@ def add_publication(request):
return
response
return
response
@csrf_exempt
def
edit_publication
(
request
):
def
edit_publication
(
request
):
pubID
=
request
.
POST
[
'pubID'
]
pubID
=
request
.
POST
[
'pubID'
]
title
=
request
.
POST
[
'title'
]
title
=
request
.
POST
[
'title'
]
...
@@ -311,7 +311,7 @@ def edit_publication(request):
...
@@ -311,7 +311,7 @@ def edit_publication(request):
if
isHaveFile
==
'1'
:
if
isHaveFile
==
'1'
:
myfile
=
request
.
FILES
[
'myfile'
]
myfile
=
request
.
FILES
[
'myfile'
]
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
BASE_DIR
=
os
.
path
.
dirname
(
os
.
path
.
dirname
(
os
.
path
.
abspath
(
__file__
)))
destination
=
os
.
path
.
join
(
BASE_DIR
,
'hunter'
,
'static'
,
'publications'
,
myfile
.
name
)
destination
=
os
.
path
.
join
(
BASE_DIR
,
'static'
,
'publications'
,
myfile
.
name
)
if
os
.
path
.
exists
(
destination
):
if
os
.
path
.
exists
(
destination
):
os
.
remove
(
destination
)
os
.
remove
(
destination
)
with
open
(
destination
,
'wb+'
)
as
dest
:
with
open
(
destination
,
'wb+'
)
as
dest
:
...
@@ -378,7 +378,7 @@ def edit_publication(request):
...
@@ -378,7 +378,7 @@ def edit_publication(request):
return
JsonResponse
({
"message"
:
0
})
return
JsonResponse
({
"message"
:
0
})
return
response
return
response
@csrf_exempt
def
add_cve
(
request
):
def
add_cve
(
request
):
owner
=
request
.
POST
[
'owner'
]
owner
=
request
.
POST
[
'owner'
]
bugType
=
request
.
POST
[
'bugType'
]
bugType
=
request
.
POST
[
'bugType'
]
...
@@ -398,7 +398,7 @@ def add_cve(request):
...
@@ -398,7 +398,7 @@ def add_cve(request):
return
response
return
response
@csrf_exempt
def
edit_cve
(
request
):
def
edit_cve
(
request
):
bugType
=
request
.
POST
[
'bugType'
]
bugType
=
request
.
POST
[
'bugType'
]
identifier
=
request
.
POST
[
'cve_id'
]
identifier
=
request
.
POST
[
'cve_id'
]
...
@@ -414,7 +414,7 @@ def edit_cve(request):
...
@@ -414,7 +414,7 @@ def edit_cve(request):
response
=
JsonResponse
({
"message"
:
0
})
response
=
JsonResponse
({
"message"
:
0
})
return
response
return
response
@csrf_exempt
def
update_article
(
request
):
def
update_article
(
request
):
art_id
=
request
.
POST
[
'art_id'
]
art_id
=
request
.
POST
[
'art_id'
]
print
(
'update_article, art_id = '
,
art_id
)
print
(
'update_article, art_id = '
,
art_id
)
...
@@ -428,6 +428,6 @@ def update_article(request):
...
@@ -428,6 +428,6 @@ def update_article(request):
return
JsonResponse
({
"message"
:
"failed"
})
return
JsonResponse
({
"message"
:
"failed"
})
@csrf_exempt
def
add_article
(
request
):
def
add_article
(
request
):
return
0
return
0
\ No newline at end of file
hunter/views/view_page.py
View file @
8ea728ca
...
@@ -137,9 +137,11 @@ def user_html(request, user_id):
...
@@ -137,9 +137,11 @@ def user_html(request, user_id):
u
=
{
'userID'
:
user_id
,
'name'
:
username
}
u
=
{
'userID'
:
user_id
,
'name'
:
username
}
my_publication_year_list
=
{}
my_publication_year_list
=
{}
pub_ids
=
PubToUser
.
objects
.
filter
(
userID
=
user_id
)
.
all
()
.
values
(
'pubID'
)
pub_ids
=
PubToUser
.
objects
.
filter
(
userID
=
user_id
)
.
all
()
.
values
(
'pubID'
)
print
(
"user_html publications: "
)
for
pub_id
in
pub_ids
:
for
pub_id
in
pub_ids
:
print
(
pub_id
)
#print(pub_id,
)
pub
=
get_object_or_404
(
Publications
,
pk
=
pub_id
[
'pubID'
])
pub
=
get_object_or_404
(
Publications
,
pk
=
pub_id
[
'pubID'
])
print
(
pub
.
pubID
,
pub
.
title
)
year
=
str
(
pub
.
date
)[
0
:
4
]
year
=
str
(
pub
.
date
)[
0
:
4
]
pub
.
date
=
str
(
pub
.
date
)[
5
:
10
]
pub
.
date
=
str
(
pub
.
date
)[
5
:
10
]
pub
.
link
=
pub
.
link
.
split
(
'/'
)[
-
1
]
pub
.
link
=
pub
.
link
.
split
(
'/'
)[
-
1
]
...
@@ -155,6 +157,7 @@ def user_html(request, user_id):
...
@@ -155,6 +157,7 @@ def user_html(request, user_id):
print
(
publication_year_list
)
print
(
publication_year_list
)
print
(
my_publication_year_list
)
print
(
my_publication_year_list
)
my_article_list
=
Articles
.
objects
.
filter
(
authorID
=
user_id
)
.
order_by
(
'-editDateTime'
)
my_article_list
=
Articles
.
objects
.
filter
(
authorID
=
user_id
)
.
order_by
(
'-editDateTime'
)
my_article_year_list
=
{}
my_article_year_list
=
{}
for
art
in
my_article_list
:
for
art
in
my_article_list
:
...
@@ -323,9 +326,6 @@ def profile_edit(request, user_id):
...
@@ -323,9 +326,6 @@ def profile_edit(request, user_id):
def
check_admin_privilage
(
user_id
):
def
check_admin_privilage
(
user_id
):
try
:
try
:
user_id
=
int
(
user_id
)
user_id
=
int
(
user_id
)
...
@@ -386,7 +386,6 @@ def user_score_records(request):
...
@@ -386,7 +386,6 @@ def user_score_records(request):
records
=
ScoreRecords
.
objects
.
filter
(
userID
=
user_id
);
records
=
ScoreRecords
.
objects
.
filter
(
userID
=
user_id
);
return
render
(
request
,
"user_score.html"
,
locals
())
return
render
(
request
,
"user_score.html"
,
locals
())
@csrf_exempt
def
operator
(
request
):
def
operator
(
request
):
message
=
{}
message
=
{}
print
(
"cal api operator."
)
print
(
"cal api operator."
)
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment