Update to v2.1

2026-02-10 09:47:26 +08:00 · 2021-01-21 14:42:57 +08:00
parent 98358ad216
commit c6bb4c9afb
16 changed files with 1238 additions and 1446 deletions
--- a/version/server/auth.py
+++ b/version/server/auth.py
@@ -1,7 +1,8 @@
-import sqlite3
 import hashlib
 import time
 import server.arcworld
+from server.sql import Connect
+import functools


 def arc_login(name: str, password: str) -> str:  # 登录判断
@@ -9,41 +10,39 @@ def arc_login(name: str, password: str) -> str:  # 登录判断
    # token采用user_id和时间戳连接后hash生成（真的是瞎想的，没用bear）
    # 密码和token的加密方式为 SHA-256

-    conn = sqlite3.connect('./database/arcaea_database.db')
-    c = conn.cursor()
-    error_code = None
+    error_code = 108
    token = None
-    hash_pwd = hashlib.sha256(password.encode("utf8")).hexdigest()
-    c.execute('''select user_id, password from user where name = :name''', {
-              'name': name})
-    x = c.fetchone()
-    if x is not None:
-        if x[1] == '':
-            # 账号封禁
-            error_code = 106
-        elif x[1] == hash_pwd:
-            user_id = str(x[0])
-            now = int(time.time() * 1000)
-            token = hashlib.sha256(
-                (user_id + str(now)).encode("utf8")).hexdigest()
-            c.execute(
-                '''select exists(select * from login where user_id = :user_id)''', {"user_id": user_id})
+    with Connect() as c:
+        hash_pwd = hashlib.sha256(password.encode("utf8")).hexdigest()
+        c.execute('''select user_id, password from user where name = :name''', {
+            'name': name})
+        x = c.fetchone()
+        if x is not None:
+            if x[1] == '':
+                # 账号封禁
+                error_code = 106
+            elif x[1] == hash_pwd:
+                user_id = str(x[0])
+                now = int(time.time() * 1000)
+                token = hashlib.sha256(
+                    (user_id + str(now)).encode("utf8")).hexdigest()
+                c.execute(
+                    '''select exists(select * from login where user_id = :user_id)''', {"user_id": user_id})

-            if c.fetchone() == (1,):  # 删掉多余token
-                c.execute('''delete from login where user_id = :user_id''',
-                          {'user_id': user_id})
+                if c.fetchone() == (1,):  # 删掉多余token
+                    c.execute('''delete from login where user_id = :user_id''',
+                              {'user_id': user_id})

-            c.execute('''insert into login(access_token, user_id) values(:access_token, :user_id)''', {
-                'user_id': user_id, 'access_token': token})
+                c.execute('''insert into login(access_token, user_id) values(:access_token, :user_id)''', {
+                    'user_id': user_id, 'access_token': token})
+                error_code = None
+            else:
+                # 密码错误
+                error_code = 104
        else:
-            # 密码错误
+            # 用户名错误
            error_code = 104
-    else:
-        # 用户名错误
-        error_code = 104

-    conn.commit()
-    conn.close()
    return token, error_code


@@ -81,68 +80,83 @@ def arc_register(name: str, password: str):  # 注册
                c.execute('''insert into user_char values(:a,:b,:c,:d,:e,:f,:g,:h,:i,:j,:k,:l,:m,:n,:o)''', {
                          'a': user_id, 'b': i[0], 'c': i[2], 'd': i[3], 'e': i[4], 'f': i[5], 'g': i[6], 'h': i[7], 'i': i[8], 'j': i[9], 'k': i[10], 'l': i[11], 'm': i[12], 'n': i[14], 'o': i[15]})

-    conn = sqlite3.connect('./database/arcaea_database.db')
-    c = conn.cursor()
-    hash_pwd = hashlib.sha256(password.encode("utf8")).hexdigest()
-    c.execute(
-        '''select exists(select * from user where name = :name)''', {'name': name})
-    if c.fetchone() == (0,):
-        user_code = build_user_code(c)
-        user_id = build_user_id(c)
-        now = int(time.time() * 1000)
-        c.execute('''insert into user(user_id, name, password, join_date, user_code, rating_ptt, 
-        character_id, is_skill_sealed, is_char_uncapped, is_char_uncapped_override, is_hide_rating, favorite_character, max_stamina_notification_enabled, current_map, ticket)
-        values(:user_id, :name, :password, :join_date, :user_code, 0, 0, 0, 0, 0, 0, -1, 0, '', 0)
-        ''', {'user_code': user_code, 'user_id': user_id, 'join_date': now, 'name': name, 'password': hash_pwd})
-        c.execute('''insert into recent30(user_id) values(:user_id)''', {
-                  'user_id': user_id})
+    user_id = None
+    token = None
+    error_code = 108
+    with Connect() as c:
+        hash_pwd = hashlib.sha256(password.encode("utf8")).hexdigest()
+        c.execute(
+            '''select exists(select * from user where name = :name)''', {'name': name})
+        if c.fetchone() == (0,):
+            user_code = build_user_code(c)
+            user_id = build_user_id(c)
+            now = int(time.time() * 1000)
+            c.execute('''insert into user(user_id, name, password, join_date, user_code, rating_ptt, 
+            character_id, is_skill_sealed, is_char_uncapped, is_char_uncapped_override, is_hide_rating, favorite_character, max_stamina_notification_enabled, current_map, ticket)
+            values(:user_id, :name, :password, :join_date, :user_code, 0, 0, 0, 0, 0, 0, -1, 0, '', 0)
+            ''', {'user_code': user_code, 'user_id': user_id, 'join_date': now, 'name': name, 'password': hash_pwd})
+            c.execute('''insert into recent30(user_id) values(:user_id)''', {
+                'user_id': user_id})

-        token = hashlib.sha256(
-            (str(user_id) + str(now)).encode("utf8")).hexdigest()
-        c.execute('''insert into login(access_token, user_id) values(:access_token, :user_id)''', {
-                  'user_id': user_id, 'access_token': token})
+            token = hashlib.sha256(
+                (str(user_id) + str(now)).encode("utf8")).hexdigest()
+            c.execute('''insert into login(access_token, user_id) values(:access_token, :user_id)''', {
+                'user_id': user_id, 'access_token': token})

-        insert_user_char(c, user_id)
-        conn.commit()
-        conn.close()
-        return user_id, token, 0
-    else:
-        conn.commit()
-        conn.close()
-        return None, None, 101
+            insert_user_char(c, user_id)
+            error_code = 0
+        else:
+            error_code = 101
+
+    return user_id, token, error_code


 def token_get_id(token: str):
    # 用token获取id，没有考虑不同用户token相同情况，说不定会有bug

-    conn = sqlite3.connect('./database/arcaea_database.db')
-    c = conn.cursor()
-    c.execute('''select user_id from login where access_token = :token''', {
-              'token': token})
-    x = c.fetchone()
-    if x is not None:
-        conn.commit()
-        conn.close()
-        return x[0]
-    else:
-        conn.commit()
-        conn.close()
-        return None
+    user_id = None
+    with Connect() as c:
+        c.execute('''select user_id from login where access_token = :token''', {
+            'token': token})
+        x = c.fetchone()
+        if x is not None:
+            user_id = x[0]
+
+    return user_id


 def code_get_id(user_code):
    # 用user_code获取id

-    conn = sqlite3.connect('./database/arcaea_database.db')
-    c = conn.cursor()
-    c.execute('''select user_id from user where user_code = :a''',
-              {'a': user_code})
-    x = c.fetchone()
-    if x is not None:
-        conn.commit()
-        conn.close()
-        return x[0]
-    else:
-        conn.commit()
-        conn.close()
-        return None
+    user_id = None
+
+    with Connect() as c:
+        c.execute('''select user_id from user where user_code = :a''',
+                  {'a': user_code})
+        x = c.fetchone()
+        if x is not None:
+            user_id = x[0]
+
+    return user_id
+
+
+def auth_required(request):
+    # arcaea登录验证，写成了修饰器
+    def decorator(view):
+        @functools.wraps(view)
+        def wrapped_view(*args, **kwargs):
+
+            user_id = None
+            with Connect() as c:
+                headers = request.headers
+                token = headers['Authorization']
+                token = token[7:]
+                user_id = token_get_id(token)
+
+            if user_id is not None:
+                return view(user_id, *args, **kwargs)
+            else:
+                return '''{"success":false,"error_code":108}'''
+
+        return wrapped_view
+    return decorator