Dislocker/dislocker_auth.py

import psycopg2
import os
import json
from flask import Flask, request, jsonify, render_template

config_dir_path = "./config/"
server_config_path = config_dir_path + "server.json"
if not os.path.isfile(server_config_path):
    if not os.path.isdir(config_dir_path):
        os.mkdir(config_dir_path)

    server_config = {
        "db": {
            "host": "localhost",
            "port": "5432",
            "db_name": "dislocker",
            "username": "user",
            "password": "password"
        },
        "bot": {
            "token": "TYPE HERE BOTS TOKEN KEY",
            "log_channel_id" : "TYPE HERE CHANNEL ID (YOU MUST USE INT !!!!)",
            "config_channel_id": "TYPE HERE CHANNEL ID (YOU MUST USE INT !!!!)"
        }
    }
    with open(server_config_path, "w") as w:
        json.dump(server_config, w, indent=4)
elif os.path.isfile(server_config_path):
    with open(server_config_path, "r") as r:
        server_config = json.load(r)

class Auth():
    def __init__(self, host, db, port, user, password):
        self.db = psycopg2.connect(f"host={host} dbname={db} port={port} user={user} password={password}")
    
    def check(self, pc_number, password):
        cursor = self.db.cursor()
        cursor.execute("SELECT * FROM pc_list WHERE pc_number = %s AND password_hash = %s", (pc_number, password))
        pc_info = cursor.fetchall()
        if not pc_info:
            return 1
        else:
            return 0
        
    def delete(self, pc_number):
        cursor = self.db.cursor()
        cursor.execute("UPDATE pc_list SET password_hash = NULL WHERE pc_number = %s", (pc_number,))
        self.db.commit()


app = Flask(__name__, static_folder="./resource/")
auth = Auth(server_config["db"]["host"], server_config["db"]["db_name"], server_config["db"]["port"], server_config["db"]["username"], server_config["db"]["password"])

@app.route('/verify', methods=['POST'])
def verify():
    pc_number = int(request.json.get('pc_number'))
    password = request.json.get('password')

    if auth.check(pc_number, password) == 0:
        auth.delete(pc_number)
        return jsonify({'message': 'ok'}), 200
    else:
        return jsonify({'message': 'damedesu'}), 401
    
if __name__ == '__main__':
    app.run(host="0.0.0.0", port=5000, debug=True)