[Enhance] API for getting PTT record

- Add an API endpoint for getting the user's rating records. - more detailed INFO messages for login and register - Add `finale/finale_end` endpoint #110
2026-02-11 02:17:28 +08:00 · 2023-05-23 21:25:27 +08:00
parent bd74d96250
commit e548d5639f
7 changed files with 49 additions and 9 deletions
--- a/version/core/api_user.py
+++ b/version/core/api_user.py
@@ -127,7 +127,8 @@ class APIUser(UserOnline):
        if ip is not None:
            self.ip = ip
        if not self.limiter.hit(name):
-            raise RateLimit('Too many login attempts', api_error_code=-205)
+            raise RateLimit(
+                f'Too many login attempts of username {name}', api_error_code=-205)

        self.c.execute('''select user_id, password from user where name = :a''', {
                       'a': self.name})
@@ -136,9 +137,9 @@ class APIUser(UserOnline):
            raise NoData(
                f'The user `{self.name}` does not exist.', api_error_code=-201, status=401)
        if x[1] == '':
-            raise UserBan(f'The user `{self.name}` is banned.')
+            raise UserBan(f'The user `{x[0]}` is banned.')
        if self.hash_pwd != x[1]:
-            raise NoAccess('The password is incorrect.',
+            raise NoAccess(f'The password of user `{x[0]}` is incorrect.',
                           api_error_code=-201, status=401)

        self.user_id = x[0]
--- a/version/core/user.py
+++ b/version/core/user.py
@@ -237,7 +237,8 @@ class UserLogin(User):
            self.set_ip(ip)

        if not self.limiter.hit(name):
-            raise RateLimit('Too many login attempts.', 123, -203)
+            raise RateLimit(
+                f'Too many login attempts of username `{name}`', 123, -203)

        self.c.execute('''select user_id, password, ban_flag from user where name = :name''', {
                       'name': self.name})
@@ -251,7 +252,7 @@ class UserLogin(User):
            # 自动封号检查
            ban_timestamp = int(x[2].split(':', 1)[1])
            if ban_timestamp > self.now:
-                raise UserBan('Too many devices logging in during 24 hours.', 105, extra_data={
+                raise UserBan(f'Too many devices user `{self.user_id}` logging in during 24 hours.', 105, extra_data={
                              'remaining_ts': ban_timestamp-self.now})

        if x[1] == '':
@@ -260,7 +261,7 @@ class UserLogin(User):
                f'The account `{self.user_id}` has been banned.', 106)

        if x[1] != self.hash_pwd:
-            raise NoAccess('Wrong password.', 104)
+            raise NoAccess(f'Wrong password of user `{self.user_id}`', 104)

        self.token = base64.b64encode(hashlib.sha256(
            (str(self.user_id) + str(self.now)).encode("utf8") + urandom(8)).digest()).decode()