Fixing annoying typo

Fixing unfinished procedure out
Basic profile activity
2025-09-08 12:58:13 +07:00 · 2025-09-08 12:57:50 +07:00 · 2025-09-08 12:11:03 +07:00 · 2025-09-08 12:08:52 +07:00
7 changed files with 80 additions and 7 deletions
--- a/config/globalvar.py
+++ b/config/globalvar.py
@ -6,6 +6,8 @@ copyright               = "Copyright (C) 2024  Dita Aji Pratama"

 production              = False
 forbidden_registration  = ['su', 'admin']
+if production == False:
+    forbidden_registration = []

 auth_key                = 'your_key'

--- a/config/navigation.py
+++ b/config/navigation.py
@ -31,6 +31,12 @@ menu        = {
                "href":"/login",
                "roles":[0]
            },
+            {
+                "name":"Profile",
+                "target":"_self",
+                "href":"/profile",
+                "roles":[1,2,3]
+            },
            {
                "name":"Logout",
                "target":"_self",
--- a/handler.py
+++ b/handler.py
@ -22,6 +22,7 @@ import	modules.public.login	as public_login
 import	modules.public.forgot	as public_forgot
 import	modules.public.reset	as public_reset

+import	modules.public.profile	as public_profile
 import	modules.public.roles	as public_roles
 import	modules.public.users	as public_users
 import	modules.public.accept	as public_accept
@ -122,6 +123,15 @@ def index():
    else:
        redirect('/')

+@app.route('/profile')
+def index():
+    params = {
+        "mako"  : {
+            "website" : template_public.main(directory.page["public"], "profile")
+        }
+    }
+    return public_profile.profile().html(params)
+
@app.route('/roles')
 def index():
    params = {
--- a/modules/api/auth.py
+++ b/modules/api/auth.py
@ -256,7 +256,8 @@ class auth:
            user_validation 	= procedure_validation.validation().account(APIADDR, allowed_roles, jwt)
            user 		= user_validation['data']
            loggorilla.prcss(APIADDR, "Get dependency data")
-            self.cursor.execute("call sp_auth_login(%s);", (user['profile']['username'],) )
+            self.cursor.execute("CALL sp_auth_login(%s, @o_count, @o_token, @o_id, @o_username, @o_password)", (user['profile']['username'],) )
+            self.cursor.execute("SELECT @o_count, @o_token, @o_id, @o_username, @o_password")
            result_login = self.cursor.fetchone()
            self.cursor.execute(f"SELECT COUNT(*) AS `count`, auth_profile.token, auth_profile.email FROM auth_profile_verification INNER JOIN auth_profile ON auth_profile.id = auth_profile_verification.profile WHERE auth_profile.email = %s AND auth_profile_verification.type = 'email' ; ", (email,) )
            result_email = self.cursor.fetchone()
@ -269,7 +270,7 @@ class auth:
                loggorilla.prcss(APIADDR, "Giving response")
                response["status"	] = "failed"
                response["desc"		] = "Invitation roles is not allowed"
-            elif not bcrypt.checkpw(password.encode(), result_login['password'].decode().encode() ):
+            elif not bcrypt.checkpw(password.encode(), result_login['@o_password'].decode().encode() ):
                loggorilla.accss(APIADDR, f"{user['profile']['username']} put a wrong password for send invitation")
                loggorilla.prcss(APIADDR, "Giving response")
                response["status"	] = "failed"
@ -413,14 +414,15 @@ class auth:
        self.cursor.execute("BEGIN;")
        try:
            loggorilla.prcss(APIADDR, "Get dependency data")
-            self.cursor.execute("call sp_auth_login(%s);", (username,) )
+            self.cursor.execute("CALL sp_auth_login(%s, @o_count, @o_token, @o_id, @o_username, @o_password)", (username,))
+            self.cursor.execute("SELECT @o_count, @o_token, @o_id, @o_username, @o_password")
            result_login = self.cursor.fetchone()
-            self.cursor.execute("SELECT `profile`, `type`, `verified` FROM auth_profile_verification WHERE `type` = 'email' AND `profile` = %s ; ", (result_login['id'],) )
+            self.cursor.execute("SELECT `profile`, `type`, `verified` FROM auth_profile_verification WHERE `type` = 'email' AND `profile` = %s ; ", (result_login['@o_id'],) )
            result_verification = self.cursor.fetchone()
            loggorilla.prcss(APIADDR, "Validation")
-            if result_login['count'] == 1 and result_verification['verified'] == 1 and bcrypt.checkpw(password.encode(), result_login['password'].decode().encode() ) :
+            if result_login['@o_count'] == 1 and result_verification['verified'] == 1 and bcrypt.checkpw(password.encode(), result_login['@o_password'].decode().encode() ) :
                loggorilla.prcss(APIADDR, "Add session")
-                self.cursor.execute(f"INSERT INTO `auth_session` VALUES (DEFAULT, %s, NOW(), NOW() + INTERVAL 60 DAY)", ( result_login['token'], ) )
+                self.cursor.execute(f"INSERT INTO `auth_session` VALUES (DEFAULT, %s, NOW(), NOW() + INTERVAL 60 DAY)", ( result_login['@o_token'], ) )
                session_last_id = self.cursor.lastrowid
                self.cursor.execute(f"SELECT `id`, `start`, `end` FROM `auth_session` WHERE id = %s ; ", ( session_last_id, ) )
                session         = self.cursor.fetchone()
--- a/modules/public/profile.py
+++ b/modules/public/profile.py
@ -0,0 +1,37 @@
+from    mako.template		import Template
+from    config			import globalvar, navigation
+from    scripts                 import  loggorilla
+
+import  procedure.validation    as 		procedure_validation
+
+class profile:
+
+    def __init__(self):
+        pass
+
+    def html(self, params):
+        APIADDR         = "/profile"
+
+        loggorilla.prcss(APIADDR, "Define page parameters")
+        active_page     = "Profile"
+        allowed_roles   = [1,2,3]
+
+        loggorilla.prcss(APIADDR, "Account validation")
+        user_validation = procedure_validation.validation().account(APIADDR, allowed_roles)
+        user            = user_validation['data']
+        
+        return Template(params["mako"]["website"]['index']).render(
+            title	= globalvar.title,
+            header	= globalvar.header,
+            navbar	= Template(params["mako"]["website"]['navbar']).render(
+                menu		= navigation.menu['public']['navbar'],
+                user_roles	= user['profile']['roles'],
+                active_page	= active_page
+            ),
+            footer	= Template(params["mako"]["website"]['footer']).render(
+                copyright	= globalvar.copyright,
+            ),
+            container	= Template(params["mako"]["website"]['container']).render(
+                profile		= user['profile']
+            )
+        )
--- a/pages/public/profile.html
+++ b/pages/public/profile.html
@ -0,0 +1,5 @@
+<ul>
+  <li>Username: ${profile['username']}</li>
+  <li>Email: ${profile['email']}</li>
+  <li>Phone: ${profile['phone']}</li>
+</ul>
--- a/sql/auth.sql
+++ b/sql/auth.sql
@ -109,7 +109,12 @@ DELIMITER ;

 DELIMITER //
 CREATE PROCEDURE sp_auth_login(
-	IN p_username varchar(36)
+	IN  p_username VARCHAR(36),
+	OUT o_count INT(11),
+	OUT o_token BINARY(40),
+	OUT o_id INT(11),
+	OUT o_username VARCHAR(36),
+	OUT o_password BINARY(60)
 )
 BEGIN
 	SELECT
@ -118,6 +123,12 @@ BEGIN
 		auth_profile.id,
 		auth_profile.username,
 		auth.password
+	INTO
+		o_count,
+		o_token,
+		o_id,
+		o_username,
+		o_password
 	FROM auth_profile
 	INNER JOIN auth ON auth.token = auth_profile.token
 	WHERE auth_profile.username = p_username ;
Author	SHA1	Message	Date
Dita Aji Pratama	7435a0633d	Fixing annoying typo	2025-09-08 12:58:13 +07:00
Dita Aji Pratama	4e584c75ec	Fixing unfinished procedure out	2025-09-08 12:57:50 +07:00
Dita Aji Pratama	56e737be3a	Basic profile activity	2025-09-08 12:11:03 +07:00
Dita Aji Pratama	8cc5a51f76	disabled forbidden_registration for development	2025-09-08 12:08:52 +07:00