90 lines
3.0 KiB
Python
90 lines
3.0 KiB
Python
# -*- coding: utf8 -*-
|
|
from sqlalchemy import text
|
|
from sqlalchemy.ext.declarative import declarative_base
|
|
from sqlalchemy.orm import (
|
|
scoped_session,
|
|
sessionmaker,
|
|
)
|
|
from zope.sqlalchemy import (
|
|
ZopeTransactionExtension,
|
|
mark_changed
|
|
)
|
|
|
|
from datetime import *
|
|
import transaction
|
|
|
|
def execute_query(request, query, params):
|
|
"""Execute query and mark session as changed"""
|
|
request.dbsession.execute(query, params)
|
|
mark_changed(request.dbsession)
|
|
transaction.commit()
|
|
|
|
def get_member_by_mdp_oublie(request, lien):
|
|
query = "SELECT * FROM p_users WHERE mdp_oublie=:lien;"
|
|
results = request.dbsession.execute(query, {'lien':lien}).first()
|
|
return results
|
|
|
|
def get_member_by_id(request, mbr_id):
|
|
if mbr_id == '0':
|
|
query = "SELECT * FROM P_USERS ORDER BY cd_uti"
|
|
results = request.dbsession.execute(query).fetchall()
|
|
else:
|
|
# lire le membres par son identifianr
|
|
query = """SELECT * FROM p_users WHERE CD_UTI=:mbr_id;"""
|
|
results = request.dbsession.execute(query, {'mbr_id': mbr_id}).first()
|
|
return results
|
|
|
|
def update_membre_mdp_oublie(request, login):
|
|
import base64
|
|
import uuid
|
|
|
|
# get a UUID - URL safe, Base64
|
|
r_uuid = base64.urlsafe_b64encode(uuid.uuid4().bytes)
|
|
r_uuid = r_uuid.replace('=', '')
|
|
query = "UPDATE p_users SET mdp_oublie=:r_uuid, mdp_oublie_date=now() WHERE CD_UTI=:login;"
|
|
execute_query(request, query, {'r_uuid':r_uuid, 'login':login})
|
|
return r_uuid
|
|
|
|
def update_membre_mdp(request, login, password):
|
|
"""Update password for member login"""
|
|
query = "UPDATE p_users SET mdp = SHA1(:password), mdp_oublie=NULL, mdp_oublie_date=NULL WHERE cd_uti=:login;"
|
|
execute_query(request, query, {'login': login, 'password': password})
|
|
|
|
def update_last_connection(request, login):
|
|
"""Update last connection for login """
|
|
query = "UPDATE p_users SET dern_cnx_le=NOW() WHERE cd_uti=:login;"
|
|
execute_query(request, query, {'login': login})
|
|
|
|
def update_membre(request, cd_uti, new_values):
|
|
# formater les champs
|
|
s = ''
|
|
for param in new_values.keys():
|
|
if param == 'nom':
|
|
new_values['nom'] = new_values['nom'].upper()
|
|
if param == 'access':
|
|
' ne prend que le 1er caractère'
|
|
new_values['access'] = new_values['access'][0]
|
|
|
|
if s:
|
|
s += ",%s=:%s" % (param, param)
|
|
else:
|
|
s = "%s=:%s" % (param, param)
|
|
|
|
if cd_uti == '0':
|
|
query = "INSERT INTO p_users SET %s" % s
|
|
else:
|
|
new_values['cd_uti'] = cd_uti
|
|
query = "UPDATE p_users SET %s WHERE cd_uti = :cd_uti;" % s
|
|
execute_query(request, query, new_values)
|
|
|
|
def delete_membre(request, cd_uti):
|
|
query = "DELETE FROM p_users WHERE cd_uti = :cd_uti ;"
|
|
execute_query(request, query, {'cd_uti': cd_uti})
|
|
|
|
def get_chantiers_byName(request, societe, name, tous):
|
|
|
|
query = "CALL spGET_CHANTIERS_byName('%s','%s');" % (societe, name)
|
|
results = request.dbsession.execute(query).fetchall()
|
|
return results
|
|
|