Helper-Functions/sql_functions.py at master · nikb999/Helper-Functions · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
#!/usr/bin/python
# -*- coding: utf-8 -*-

#Library of common functions
import json, urllib2, re, time, datetime, sys, cgi, os, string, random, math
import locale
import base64
import hashlib
import sqlite3
from tempfile import TemporaryFile

from email.mime.text import MIMEText

from werkzeug.security import generate_password_hash, \
                              check_password_hash

#to enable debugging
import cgitb
# cgitb.enable()


# ###############################################################################
# ###############################################################################
#
#                SQL FUNCTIONS
#
# ###############################################################################
# ###############################################################################

# Open database connection
def sql_open_db(in_db=''):
    # # Fatcow DB
    # db_host="......fatcowmysql.com"
    # db_username="...."
    # db_password="..."
    # db_database="....."

    # AWS DB
    db_host="/home/ubuntu/..../"
    db_username=""
    db_password=""
    db_database=in_db
    db_host_db = db_host+db_database

    try:
        # FATCOW
        # db = MySQLdb.connect(db_host,db_username,db_password,db_database)

        # AWS - sqlite3 -- outside of Flask app framework.
        db = sqlite3.connect(db_host_db)

        cur = db.cursor()
        #cur.execute("SELECT VERSION()")
        cur.execute("SELECT SQLITE_VERSION()")

        ver = cur.fetchone()

        return db
    except:
        return False

def sql_create_table():

    try:
        db = sql_open_db()
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Drop table if it already exist using execute() method.
    try:
        cursor.execute("DROP TABLE IF EXISTS FM_MODEL")
    except:
        return False

    sql = """CREATE TABLE FM_MODELS (
             USERNAME  CHAR(50) NOT NULL,
             MODELNAME CHAR(112),
             MODELDATA TEXT,
             LASTSAVED TEXT,
             MODELTYPE CHAR(50)
             )"""

    try:
        cursor.execute(sql)
        # disconnect from server
        db.close()
        return True
    except:
        return False

def sql_add_user(u_info):
    #module to add a user - get the data as a list
    #open the database
    try:
        db = sql_open_db()
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    sql_1 = 'INSERT INTO FM_USERS(USERNAME, PASSWORD, EMAIL, REGTYPE) VALUES ( '
    sql_2 = sql_1 + "'" + u_info[0] + "','" + u_info[1] + "','" + u_info[2] + "','" + u_info[3] + "'"
    sql_3 = sql_2 + ' )'

    sql = sql_3

    try:
        # Execute the SQL command
        cursor.execute(sql)
        # Commit your changes in the database
        db.commit()
        # disconnect from server
        db.close()
        return True
    except:
        # Rollback in case there is any error
        db.rollback()
        return False

def sql_get_userinfo(u_name):
    #module to get all users info
    #open the database
    try:
        db = sql_open_db()
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    sql = "SELECT * FROM FM_USERS WHERE USERNAME = '"+u_name+"'"

    try:
        # Execute the SQL command
        cursor.execute(sql)
        # Commit your changes in the database
        results = cursor.fetchall()
        # disconnect from server
        db.close()
        return results
    except:
        return False

def sql_update_password(u_info):
    #module to update password - data comes in as a list - name and new pswd
    #open the database
    try:
        db = sql_open_db()
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    sql = "UPDATE FM_USERS SET PASSWORD = '"+u_info[1]+"' WHERE USERNAME = '"+u_info[0]+"'"
    #print '<p>',sql

    try:
        # Execute the SQL command
        cursor.execute(sql)
        # Commit your changes in the database
        db.commit()
        # disconnect from server
        db.close()
        return True
    except:
        return False

def sql_update_registration(u_info):
    #module to get all users info
    #open the database
    try:
        db = sql_open_db()
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    sql = "UPDATE FM_USERS SET REGTYPE = '"+u_info[1]+"' WHERE USERNAME = '"+u_info[0]+"'"
    #print '<p>',sql

    try:
        # Execute the SQL command
        cursor.execute(sql)
        # Commit your changes in the database
        db.commit()
        #print <p>1 Done with ",sql
        # disconnect from server
        db.close()
        return True
    except:
        return False

def sql_get_modelinfo_all(u_name):
    #module to get info for the models saved for a given user
    #open the database
    try:
        db = sql_open_db('fm_model.db')
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    sql = "SELECT * FROM FM_MODELS WHERE USERNAME = '"+u_name+"'"
    sql3 = "SELECT * FROM FM_MODEL WHERE USERNAME = ?"
    args = [u_name]

    try:
        # Execute the SQL command
        #cursor.execute(sql)
        cursor.execute(sql3,args)
        # Commit your changes in the database
        results = cursor.fetchall()
        # disconnect from server
        db.close()
        return results
    except:
        return False

def sql_get_modelinfo(u_name,m_type):
    #module to get info for the models saved for a given user and model type
    #open the database
    try:
        db = sql_open_db('fm_model.db')
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    # Prepare SQL query to INSERT a record into the database.
    # sql = "SELECT * FROM FM_MODELS WHERE USERNAME = '"+u_name+"' AND MODELTYPE = '"+m_type+"'"
    sql3 = "SELECT * FROM FM_MODEL WHERE USERNAME = ? AND MODELTYPE = ?"
    args = [u_name,m_type]

    try:
        # Execute the SQL command
        # cursor.execute(sql)
        cursor.execute(sql3,args)
        # Commit your changes in the database
        results = cursor.fetchall()
        # disconnect from server
        db.close()
        return results
    except:
        return False

def sql_process_model(m_info):
    #module to add or update a model -
    #get the data as a list -- ADD/UPDATE/DELETE, USERNAME, MODELNAME, MODELDATA and MODELTYPE
    # time stamp placed automatically
    #open the database
    try:
        db = sql_open_db('fm_model')
        # prepare a cursor object using cursor() method
        cursor = db.cursor()
    except:
        return False

    #replace all the ' with \' in the sql input
    #model_data = m_info[3].replace("'","''")
    # use the msqld.escape_string function to do this.
    #model_data = MySQLdb.escape_string(str(m_info[3]))
    model_data = m_info[3]

    # Prepare SQL query to INSERT a record into the database.
    if m_info[0].upper()=="ADD":
        sql_1 = 'INSERT INTO FM_MODEL (USERNAME, MODELNAME, MODELDATA, LASTSAVED, MODELTYPE) VALUES ( '
        sql_2 = sql_1 + "'" + m_info[1] + "','" + m_info[2] + "','" + model_data + "',now()" + ",'" + m_info[4] + "'"
        sql3 = 'INSERT INTO FM_MODEL (USERNAME, MODELNAME, MODELDATA, LASTSAVED, MODELTYPE) VALUES (?,?,?,?,?)'
        args = [m_info[1],m_info[2],model_data,now(),m_info[4]]
    elif m_info[0].upper()=="UPDATE":
        sql3 = "UPDATE FM_MODEL SET MODELDATA = ? LASTSAVED = ? WHERE ( USERNAME = ? AND MODELNAME = ?)"
        args = [model_data,now(),m_info[1],m_info[2]]
    elif m_info[0].upper()=="DELETE":
        sql3 = "DELETE FROM FM_MODEL WHERE (USERNAME = ? AND MODELNAME = ?)"
        args = [m_info[1],m_info[2]]
    else:
        sql3 = "SELECT SQLITE_VERSION()"
        args = []

    try:
        # Execute the SQL command
        cursor.execute(sql3,args)
        # Commit your changes in the database
        db.commit()
        # disconnect from server
        db.close()
        return True
    except:
        # Rollback in case there is any error
        db.rollback()
        return False

def sql_get_maxmodels(utype=''):
    #module to define the max number of models that a user can store
    return 10