Mercurial > templog
diff web/templog.py @ 291:f7261dd970da
- replace ssl client certs with cookies
- remove unused ssh code
- add /set?fake=1 test mode
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sat, 06 Jul 2019 16:32:16 +0800 |
| parents | 6c14e0573f50 |
| children | 6bacd8ca9f8f |
line wrap: on
line diff
--- a/web/templog.py Sat Jul 06 15:02:47 2019 +0800 +++ b/web/templog.py Sat Jul 06 16:32:16 2019 +0800 @@ -69,7 +69,7 @@ @route('/set/update', method='post') def set_update(): - if not secure.check_user_hash(config.ALLOWED_USERS): + if not secure.check_cookie(config.ALLOWED_USERS): # the "Save" button should be disabled if the cert wasn't # good response.status = 403 @@ -92,9 +92,13 @@ @route('/set') def set(): - allowed = ["false", "true"][secure.check_user_hash(config.ALLOWED_USERS)] + cookie_hash = secure.init_cookie() + allowed = ["false", "true"][secure.check_cookie(config.ALLOWED_USERS)] response.set_header('Cache-Control', 'no-cache') - inline_data = log.get_params() + if request.query.fake: + inline_data = log.fake_params() + else: + inline_data = log.get_params() if not inline_data: response.status = 503 # Service Unavailable return bottle.template('noparamsyet') @@ -102,7 +106,9 @@ return bottle.template('set', inline_data = inline_data, csrf_blob = secure.get_csrf_blob(), - allowed = allowed) + allowed = allowed, + cookie_hash = cookie_hash, + email = urllib.quote(config.EMAIL)) def get_request_zoom(): """ returns (length, end) tuple.