reCAPTCHA Failed. Please try again later.') + return redirect('/') + except Exception as e: + print("Error*Login:", email, str(e), flush=True) + flash( + '帳號或密碼錯誤,請重新輸入
Incorrect username or password') + return redirect('/') + else: + return redirect('/select') + + +@login.route('/select', methods=['GET', 'POST']) +def selSubUser(): + if check_login_status(): + session.clear() + flash("Timeout. 遇時,請重新登入") + return redirect('/') + refresh_token() + if 'subuser_type' in session and session['subuser_type'] == 'admin' or 'user_type' in session and session['user_type'] == 'student': + return redirect('/manage') + if request.method == 'GET': + db = refresh_db() + cursor = db.cursor(buffered=True) + cursor.execute("SELECT category, subclass FROM gpclasses WHERE accs LIKE %s LIMIT 1", ('%'+session['oldUsername']+'%',)) + classes = cursor.fetchone() + cursor.close() + hasGroup = False + if classes != None: + hasGroup = True + db = refresh_db() + cursor = db.cursor(buffered=True) + cursor.execute("SELECT grade, class_ FROM homerooms WHERE accs LIKE %s", ('%'+session['oldUsername']+'%',)) + homerooms = cursor.fetchall() + cursor.close() + hrC = {} + for h in homerooms: + hrC[h[0]] = [] + hrC[h[0]].append(h[1]) + return render_template('selSubUser.html', group=hasGroup, homeroom=hrC, name=session['name']) + else: + data = request.form['subuser_sel'].split('^') + if data == []: + return redirect('/select') + try: + if (verify_recaptcha("")): + if (data[0] == 'homeroom'): + session['homeroom'] = data[1] + '^' + data[2] + session['subuser_type'] = 'homeroom' + elif (data[0] == 'group'): + session['subuser_type'] = 'group' + return redirect('/manage') + else: + print("ReC Error:", data, flush=True) + flash( + 'reCAPTCHA 錯誤,請稍後再試一次
reCAPTCHA Failed. Please try again later.') + return redirect('/select') + except Exception as e: + print("Error*select:", session['email'], str(e), flush=True) + flash(str(e)) + return redirect('/select') + + +@login.route('/chgPassword', methods=['POST', 'GET']) +def chgPassword(): + data = {} + if request.method == 'GET': + if not check_login_status(): + refresh_token() + return render_template('chgPassword.html') + else: + return abort(404) + elif request.method == 'POST': + oldEmail = session['email'] + if not check_login_status(): + refresh_token() + try: + if (verify_recaptcha("")): + db = refresh_db() + cursor = db.cursor(buffered=True) + if ('user_type' in session and session['user_type'] == 'student'): + cursor.execute("SELECT password FROM students WHERE email = %s", (oldEmail,)) + else: + cursor.execute("SELECT password FROM users WHERE email = %s", (oldEmail,)) + user = cursor.fetchone() + cursor.close() + if user == None or not verifyPassword(request.form['password'], user[0]): + raise Exception('Invalid Login') + if len(request.form['new_password']) < 6: + raise Exception('密碼長度不足
Password not long enough') + db = refresh_db() + cursor = db.cursor(buffered=True) + if (request.form['new_username'] != oldEmail and request.form['new_username'] != ''): + if ('user_type' in session and session['user_type'] == 'student'): + cursor.execute("SELECT * FROM students WHERE email = %s", (request.form['new_username'],)) + else: + cursor.execute("SELECT * FROM users WHERE email = %s", (request.form['new_username'],)) + user = cursor.fetchone() + cursor.close() + if user != None: + raise Exception('帳號已被使用
Username already used') + db = refresh_db() + cursor = db.cursor(buffered=True) + if ('user_type' in session and session['user_type'] == 'student'): + cursor.execute("UPDATE students SET password = %s WHERE email = %s", (genHash(request.form['new_password']), oldEmail)) + if (request.form['new_username'] != oldEmail and request.form['new_username'] != ''): + cursor.execute("UPDATE students SET email = %s WHERE email = %s", (request.form['new_username'], oldEmail)) + else: + cursor.execute("UPDATE users SET password = %s WHERE email = %s", ( + genHash(request.form['new_password']), oldEmail)) + if (request.form['new_username'] != oldEmail and request.form['new_username'] != ''): + cursor.execute("UPDATE users SET email = %s WHERE email = %s", (request.form['new_username'], oldEmail)) + db.commit() + cursor.close() + session.clear() + if (request.form['new_username'] != oldEmail and request.form['new_username'] != ''): + send_email(oldEmail, "Email Changed 信箱已更改", + """
+ Your email was changed at %s to %s.
+ If you did not change your email, please contact the student affair's office immediately. +
+ 你的信箱已在 %s 更改為 %s。
+ 如果你沒有更改信箱,請立即聯絡學務處。 +
+ This email was sent automatically. Please do not reply.
+ 這個郵件是自動發送的,請不要回覆。 + """ % (str(datetime.now(tz)), request.form['new_username'], str(datetime.now(tz)), request.form['new_username'])) + flash( + '修改密碼成功,請重新登入
Password changed successfully. Please login again.') + return redirect('/') + else: + print("ReC Error:", oldEmail, flush=True) + flash( + 'reCAPTCHA 錯誤,請稍後再試一次
reCAPTCHA Failed. Please try again later.') + return redirect('/chgPassword') + except Exception as e: + flash(str(e)) + return redirect('/chgPassword') + + +@login.route('/forgotPassword', methods=['GET', 'POST']) +def forgotPassword(): + if request.method == 'GET': + return render_template('forgotPassword.html') + elif request.method == 'POST': + email = request.form['username'] + try: + if (verify_recaptcha("")): + db = refresh_db() + cursor = db.cursor(buffered=True) + if (request.form['user_type'] == 'student'): + cursor.execute("SELECT * FROM students WHERE email = %s", (email,)) + elif (request.form['user_type'] == 'teacher'): + cursor.execute("SELECT email FROM users WHERE email = %s", (email,)) + user = cursor.fetchone() + cursor.close() + if user == None: + raise Exception('無此 Email
Invalid Email') + exists = True + while exists: + resetID = ''.join(choices(string.ascii_lowercase + string.digits, k=10)) + cursor = db.cursor(buffered=True) + cursor.execute("SELECT * FROM forgot WHERE resetID = %s", (resetID,)) + user = cursor.fetchone() + cursor.close() + exists = (user != None) + db = refresh_db() + cursor = db.cursor(buffered=True) + cursor.execute(""" + INSERT INTO forgot (resetID, email, reqTime, userType) + VALUES (%s, %s, %s, %s) + """, (resetID, email, datetime.strftime(datetime.now(tz), '%Y-%m-%d %H:%M:%S'), 'T' if request.form['user_type'] == 'teacher' else 'S')) + db.commit() + cursor.close() + send_email(email, "Password Reset 重置密碼", + """
+ Please go to the following link to reset your password:
+ https://abs.aaronlee.tech/resetPassword?resetCode=%s
+ If you did not request a password reset, please ignore this email. +
+ 請點選以下連結重置密碼:
+ https://abs.aaronlee.tech/resetPassword?resetCode=%s
+ 如果您沒有要求重置密碼,請忽略此郵件。 +
+ This email was sent automatically. Please do not reply.
+ 這個郵件是自動發送的,請不要回覆。 + """ % (resetID, resetID)) + print("forgotPassword email sent:", email, flush=True) + flash( + '重置密碼信件已寄出,請至信箱收取
Password reset email has been sent to your email. Please check your email.') + return redirect('/') + else: + print("ReC Error:", email, flush=True) + flash( + 'reCAPTCHA 錯誤,請稍後再試一次
reCAPTCHA Failed. Please try again later.') + return redirect('/forgotPassword') + except Exception as e: + print("Error*forgotPassword:", email, str(escape), flush=True) + flash(str(e)) + return redirect('/forgotPassword') + + +@login.route('/resetPassword', methods=['GET', 'POST']) +def resetPassword(): + if request.args.get('resetCode') is None: + return abort(404) + if request.method == 'GET': + return render_template('verifiedChgPassword.html', resetCode=request.args.get('resetCode')) + else: + try: + if (verify_recaptcha("")): + db = refresh_db() + cursor = db.cursor(buffered=True) + cursor.execute(""" + SELECT resetID, email, reqTime, userType + FROM forgot + WHERE resetID = %s + """, (request.args.get('resetCode'),)) + user = cursor.fetchone() + cursor.close() + if user == None: + raise Exception('無此重置密碼代碼
Invalid reset password code') + if (datetime.now(tz) - datetime.strptime(user[2], '%Y-%m-%d %H:%M:%S')).seconds > 3600: + cursor.execute("DELETE FROM forgot WHERE resetID = %s", (user[0],)) + db.commit() + cursor.close() + raise Exception('重置密碼代碼已過期
Reset password code expired') + if len(request.form['password']) < 6: + raise Exception('密碼長度不足
Password not long enough') + db = refresh_db() + cursor = db.cursor(buffered=True) + if (user[3] == 'T'): + cursor.execute("UPDATE users SET password = %s WHERE email = %s", ( + genHash(request.form['password']), user[1])) + elif (user[3] == 'S'): + cursor.execute("UPDATE students SET password = %s WHERE email = %s", ( + genHash(request.form['password']), user[1])) + db.commit() + cursor.close() + db = refresh_db() + cursor = db.cursor(buffered=True) + cursor.execute("DELETE FROM forgot WHERE resetID = %s", (user[0],)) + db.commit() + cursor.close() + session.clear() + flash( + '重置密碼成功,請重新登入
Password changed successfully. Please login again.') + return redirect('/') + else: + print("ReC Error:", flush=True) + flash( + 'reCAPTCHA 錯誤,請稍後再試一次
reCAPTCHA Failed. Please try again later.') + return redirect('/resetPassword') + except Exception as e: + print("Error*resetPassword:", request.args.get('resetCode'), str(e), flush=True) + flash(str(e)) + return redirect('/resetPassword?resetCode=' + request.args.get('resetCode')) + + +@login.route('/logout', methods=['GET']) +def logout(): + session.clear() + return redirect('/') diff --git a/manage.py b/manage.py index 12f6b95..d3d3d1d 100644 --- a/manage.py +++ b/manage.py @@ -6,137 +6,230 @@ manage = Blueprint('manage', __name__) def manageProcess(fCommand, fData): if (check_login_status()): return redirect('/logout') - # this is to fix a bug where pyrebase doesnt load the first request - db.child("Users").child( - session['uid']).child("permission").get(session['token']).val() - # end bug fix refresh_token() + if 'user_type' in session and session['user_type'] == 'student': + return redirect('/student') pl = session['subuser_type'] if pl == 'admin': - homerooms = db.child("Homerooms").get(session['token']).val() + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT grade, class_ FROM homerooms ORDER BY grade ASC, class_ ASC") + homeroomsSQL = cursor.fetchall() + homerooms = {} + for h in homeroomsSQL: + if h[0] in homerooms: + homerooms[h[0]].append(h[1]) + else: + homerooms[h[0]] = [h[1]] currRoom = [] if fCommand == "admin": currRoom = fData[0].split("^") else: - for i in homerooms: - currRoom.append(i) - for j in homerooms[i]: - currRoom.append(j) - break - break - homeroomData = homerooms[currRoom[0]][currRoom[1]] - absData = homeroomData["Absent"] - homeroomData.pop('Absent') - if 'placeholder' in homeroomData: - homeroomData.pop('placeholder') + currRoom = [homeroomsSQL[0][0], homeroomsSQL[0][1]] + cursor = db.cursor() + cursor.execute("SELECT num,name,ename,classes FROM students WHERE grade=%s AND class_=%s ORDER BY num ASC", (currRoom[0], currRoom[1])) + students = cursor.fetchall() + studGP = {} + for s in students: + studGP[s[0]] = json.loads(s[3]) + cursor = db.cursor() + cursor.execute("SELECT date FROM dates ORDER BY date ASC") + dates = cursor.fetchall() currDate = "" if fCommand != "": currDate = fData[1] else: - for i in absData: - currDate = i - if i >= datetime.now(tz).strftime("%Y-%m-%d"): + for i in dates: + currDate = i[0] + if i[0] >= datetime.now(tz).strftime("%Y-%m-%d"): break - return render_template('admin.html', homerooms=homerooms, absData=absData, - homeroomCode=currRoom, homeroomData=homeroomData, currDate=currDate, periods=['m', '1', '2', '3', '4', - 'n', '5', '6', '7', '8', '9'], showUpload=session['showUpload']) - elif pl == 'group': - cateData = db.child("Classes").child( - "GP_Class").child(session['category']).get(session['token']).val() - cclass = { - "name": cateData['Class'][session['class']]['name'], - "category": session['category'], - "class_id": session['class'] - } - homerooms = cateData['Homerooms'] - currDate = "" - confirmed = [] - absData = {} - for h in homerooms: - h = h.split('^') - hrData = db.child("Homerooms").child( - h[0]).child(h[1]).get(session['token']).val() - tmpAbsData = hrData['Absent'] - hrData.pop('Absent') - if 'placeholder' in hrData: - hrData.pop('placeholder') - periods = [] - dow = "" - if currDate == "": - if fCommand == 'date': - currDate = fData - for j in tmpAbsData[currDate]: - if j == "dow": - dow = tmpAbsData[currDate][j] - continue - elif j == "confirm": - confirmed.append([h[0], h[1]]) - continue - elif j == "notes": - continue - if (tmpAbsData[currDate][j]['name'] == 'GP' and - tmpAbsData[currDate][j]['teacher'] == cclass['category']): - periods.append(j) - - else: - for i in tmpAbsData: - currDate = i - if i >= datetime.now(tz).strftime("%Y-%m-%d"): - tmp = False - for j in tmpAbsData[i]: - if j == "dow": - dow = tmpAbsData[i][j] - continue - elif j == "confirm": - confirmed.append([h[0], h[1]]) - continue - elif j == 'notes': - continue - if (tmpAbsData[i][j]['name'] == 'GP' and - tmpAbsData[i][j]['teacher'] == cclass['category']): - periods.append(j) - tmp = True - if tmp == True: - break + cursor = db.cursor() + cursor.execute("SELECT dow FROM dates WHERE date=%s", (currDate, )) + dow = cursor.fetchone()[0] + cursor = db.cursor() + cursor.execute("SELECT period, subject, teacher FROM schedule WHERE grade=%s AND class_=%s AND dow=%s", (currRoom[0], currRoom[1], dow)) + scheduleSQL = cursor.fetchall() + schedule = {} + for i in scheduleSQL: + schedule[i[0]] = { + "subject": i[1], + "teacher": i[2], + } + cursor = db.cursor() + cursor.execute("SELECT period, subject, teacher FROM specschedule WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + specScheduleSQL = cursor.fetchall() + for i in specScheduleSQL: + schedule[i[0]] = { + "subject": i[1], + "teacher": i[2], + "special": True + } + cursor = db.cursor() + cursor.execute("SELECT period, signature, notes, ds1,ds2,ds3,ds4,ds5,ds6,ds7 FROM submission WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + submissionSQL = cursor.fetchall() + submission = {} + cursor = db.cursor() + cursor.execute("SELECT period, num, note FROM ds WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + idvDSSQL = cursor.fetchall() + idvDS = {} + for i in idvDSSQL: + if i[0] not in idvDS: + idvDS[i[0]] = {} + idvDS[i[0]][i[1]]= i[2] + for i in submissionSQL: + if i[0] == 'c': + submission[i[0]] = { + "signature": i[1], + "notes": i[2] + } + elif schedule[i[0]]["subject"] == "GP": + submission[i[0]] = OrderedDict() + signatures = json.loads(i[1]) + for j in signatures: + submission[i[0]][j] = { + "signature": signatures[j], + } + submission[i[0]]["notes"] = i[2] else: - for j in tmpAbsData[currDate]: - if j == "dow": - dow = tmpAbsData[currDate][j] + submission[i[0]] = { + "signature": i[1], + "notes": i[2], + "ds1": i[3], + "ds2": i[4], + "ds3": i[5], + "ds4": i[6], + "ds5": i[7], + "ds6": i[8], + "ds7": i[9] + } + cursor = db.cursor() + cursor.execute("SELECT period, num, status, note FROM absent WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + absentDataSQL = cursor.fetchall() + absentData = {} + for p in ['m', '1', '2', '3', '4', 'n', '5', '6', '7', '8', '9']: + absentData[p] = {} + for i in absentDataSQL: + absentData[i[0]][i[1]] = i[2] + for i in absentDataSQL: + absentData[i[0]][i[1]] = { + 'status': i[2], + 'note': i[3], + } + return render_template('admin.html', homerooms=homerooms, currRoom=currRoom, students=students, currDate=currDate, schedule=schedule, submission=submission, studGP=studGP, idvDS=idvDS, + dates=dates, absentData=absentData, periods=['m', '1', '2', '3', '4', 'n', '5', '6', '7', '8', '9'], showUpload=session['showUpload'], dsboard=DSBOARD, dstext=DSTEXT, dsoffenses=DSOFFENSES) + # 'n', '5', '6', '7', '8', '9'], showUpload=session['showUpload']) + elif pl == 'group': + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT category, subclass FROM gpclasses WHERE accs LIKE %s", ('%'+session['oldUsername']+'%',)) + gpclasses = cursor.fetchall() + data = {} + currDate = "" + dow = "" + cursor = db.cursor() + cursor.execute("SELECT date FROM dates ORDER BY date ASC") + dates = cursor.fetchall() + if fCommand != "": + currDate = fData + else: + for i in dates: + currDate = i[0] + if i[0] >= datetime.now(tz).strftime("%Y-%m-%d"): + break + cursor = db.cursor() + cursor.execute("SELECT dow FROM dates WHERE date=%s", (currDate, )) + dow = cursor.fetchone()[0] + + for c in gpclasses: + cursor.execute("SELECT about FROM gpclasses WHERE subclass=%s AND category=%s", + (c[1], c[0])) + cclass = { + "name": cursor.fetchone()[0], + "category": c[0], + "class_id": c[1] + } + data[cclass['category'] + ' ' + cclass['class_id']] = { + "cdata": cclass, + } + # get student list + cursor.execute("SELECT grade,class_,num,name,ename FROM students WHERE classes LIKE " + '\'%\"'+ cclass['category'] + '\": \"' + cclass['class_id'] +'\"%\'' + " ORDER BY grade ASC,class_ ASC,num ASC") + students = cursor.fetchall() + # get student homerooms + homerooms = [] + for x in students: + if (str(x[0]) + '^' + str(x[1])) not in homerooms: + homerooms.append(str(x[0]) + '^' + str(x[1])) + # get periods + for h in homerooms: + hs = h.split('^') + cursor.execute("SELECT period FROM schedule WHERE grade=%s AND class_=%s AND dow=%s AND teacher=%s", (hs[0], hs[1], dow, cclass['category'])) + scheduleSQL = cursor.fetchall() + cursor.execute("SELECT period FROM specschedule WHERE grade=%s AND class_=%s AND date=%s AND teacher=%s", (hs[0], hs[1], currDate, cclass['category'])) + specNTPSQL = cursor.fetchall() + for s in specNTPSQL: + scheduleSQL.append(s) + cursor.execute("SELECT period FROM specschedule WHERE grade=%s AND class_=%s AND date=%s AND teacher!=%s", (hs[0], hs[1], currDate, cclass['category'])) + specNTDSQL = cursor.fetchall() + specNTD = {} + for i in specNTDSQL: + specNTD[i[0]] = True + print(h, specNTD, scheduleSQL) + for p in scheduleSQL: + if p[0] in specNTD and specNTD[p[0]] == True: continue - elif j == "confirm": - confirmed.append([h[0], h[1]]) - continue - elif j == "notes": - continue - if (tmpAbsData[currDate][j]['name'] == 'GP' and - tmpAbsData[currDate][j]['teacher'] == cclass['category']): - periods.append(j) - for p in periods: - if not p in absData: - absData[p] = {} - for p in periods: - if not h[0] in absData[p]: - absData[p][h[0]] = {} - absData[p][h[0]][h[1]] = {} - if 'notes' in tmpAbsData[currDate][p]: - absData[p][h[0]][h[1] - ]['notes'] = tmpAbsData[currDate][p]['notes'] - for num in hrData: - if (cclass['category'] in hrData[num]['GP_Class'] and - hrData[num]['GP_Class'][cclass['category']] == cclass['class_id']): - for p in periods: - absData[p][h[0]][h[1]][num] = { - "name": hrData[num]['name'], - "eng_name": hrData[num]['eng_name'], - "alr_fill": (('signature' in tmpAbsData[currDate][p]) and - (cclass['class_id'] in tmpAbsData[currDate][p]['signature'] or 'STUD_AFFAIR_OFFICE' in tmpAbsData[currDate][p]['signature'])), - "absent": False if not num in tmpAbsData[currDate][p] else tmpAbsData[currDate][p][num] - } - return render_template('group_teach.html', dateKeys=sorted(tmpAbsData.keys()), cclass=cclass, absData=absData, dow=dow, currDate=currDate, tmpAbsData=tmpAbsData, confirmed=confirmed) + if p[0] not in data[cclass['category'] + ' ' + cclass['class_id']]: + data[cclass['category'] + ' ' + cclass['class_id']][p[0]] = {} + if (h not in data[cclass['category'] + ' ' + cclass['class_id']][p[0]]): + data[cclass['category'] + ' ' + cclass['class_id']][p[0]][h] = {} + cursor = db.cursor() + cursor.execute("SELECT signature FROM submission WHERE grade=%s AND class_=%s AND date=%s AND period=%s", (hs[0], hs[1], currDate, p[0])) + submissionSQL = cursor.fetchone() + submitted = False + try: + if submissionSQL[0] == 'STUD_AFFAIR_OFFICE': + submitted = True + except: + pass + try: + signatures = json.loads(submissionSQL[0]) + if cclass['class_id'] in signatures: + submitted = True + except: + pass + hrCfrm = False + if not submitted: + cursor = db.cursor() + cursor.execute("SELECT signature FROM submission WHERE grade=%s AND class_=%s AND date=%s AND period='c'", (hs[0], hs[1], currDate)) + hrCfrm = True if cursor.fetchone() != None else submitted + cursor = db.cursor() + cursor.execute("SELECT num, status, note FROM absent WHERE grade=%s AND class_=%s AND date=%s AND period=%s", (hs[0], hs[1], currDate, p[0])) + absentDataSQL = cursor.fetchall() + for x in students: + if (str(x[0])==hs[0] and str(x[1])==hs[1]): + studStatus = [item for item in absentDataSQL if item[0] == x[2]] + status = "" + if submitted: + if studStatus == []: + status = 'present' + else: + status = studStatus[0][1] + else: + if studStatus == []: + if hrCfrm: + status = '--' + else: + status = 'na' + else: + status = studStatus[0][1] + data[cclass['category'] + ' ' + cclass['class_id']][p[0]][h][x[2]] = { + "name": x[3], + "ename": x[4], + "status": status, + "note": '' if studStatus == [] else studStatus[0][2], + } + return render_template('group_teach.html', dates=dates, currDate=currDate, data=data, dsoffenses=DSOFFENSES) elif pl == 'homeroom': - homeroom = session['homeroom'].split('^') - homeroomData = db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).get(session['token']).val() + db = refresh_db() times = OrderedDict({ 'm': '00:00', '1': '08:15', @@ -158,20 +251,96 @@ def manageProcess(fCommand, fData): currTime <= times[next_item(times, i)]): currPeriod = i break - absData = homeroomData["Absent"] - homeroomData.pop('Absent') - if 'placeholder' in homeroomData: - homeroomData.pop('placeholder') + currRoom = session['homeroom'].split('^') + cursor = db.cursor() + cursor.execute("SELECT num,name,ename,classes FROM students WHERE grade=%s AND class_=%s ORDER BY num ASC", (currRoom[0], currRoom[1])) + students = cursor.fetchall() + studGP = {} + for s in students: + studGP[s[0]] = json.loads(s[3]) + cursor = db.cursor() + cursor.execute("SELECT date FROM dates ORDER BY date ASC") + dates = cursor.fetchall() currDate = "" - if fCommand == 'date': + if fCommand != "": currDate = fData else: - for i in absData: - currDate = i - if i >= datetime.now(tz).strftime("%Y-%m-%d"): + for i in dates: + currDate = i[0] + if i[0] >= datetime.now(tz).strftime("%Y-%m-%d"): break - return render_template('homeroom.html', absData=absData, homeroomCode=homeroom, homeroomData=homeroomData, - currDate=currDate, dateKeys=sorted(absData.keys()), periods=['m', '1', '2', '3', '4', 'n', '5', '6', '7', '8', '9'], currPeriod=currPeriod) + cursor = db.cursor() + cursor.execute("SELECT dow FROM dates WHERE date=%s", (currDate, )) + dow = cursor.fetchone()[0] + cursor = db.cursor() + cursor.execute("SELECT period, subject, teacher FROM schedule WHERE grade=%s AND class_=%s AND dow=%s", (currRoom[0], currRoom[1], dow)) + scheduleSQL = cursor.fetchall() + schedule = {} + for i in scheduleSQL: + schedule[i[0]] = { + "subject": i[1], + "teacher": i[2], + } + cursor = db.cursor() + cursor.execute("SELECT period, subject, teacher FROM specschedule WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + specScheduleSQL = cursor.fetchall() + for i in specScheduleSQL: + schedule[i[0]] = { + "subject": i[1], + "teacher": i[2], + "special": True + } + cursor = db.cursor() + cursor.execute("SELECT period, signature, notes, ds1,ds2,ds3,ds4,ds5,ds6,ds7 FROM submission WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + submissionSQL = cursor.fetchall() + cursor = db.cursor() + cursor.execute("SELECT period, num, note FROM ds WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + idvDSSQL = cursor.fetchall() + idvDS = {} + for i in idvDSSQL: + if i[0] not in idvDS: + idvDS[i[0]] = {} + idvDS[i[0]][i[1]]= i[2] + submission = {} + for i in submissionSQL: + if i[0] == 'c': + submission[i[0]] = { + "signature": i[1], + "notes": i[2] + } + elif schedule[i[0]]["subject"] == "GP": + submission[i[0]] = OrderedDict() + signatures = json.loads(i[1]) + for j in signatures: + submission[i[0]][j] = { + "signature": signatures[j], + } + submission[i[0]]["notes"] = i[2] + else: + submission[i[0]] = { + "signature": i[1], + "notes": i[2], + "ds1": i[3], + "ds2": i[4], + "ds3": i[5], + "ds4": i[6], + "ds5": i[7], + "ds6": i[8], + "ds7": i[9], + } + cursor = db.cursor() + cursor.execute("SELECT period, num, status, note FROM absent WHERE grade=%s AND class_=%s AND date=%s", (currRoom[0], currRoom[1], currDate)) + absentDataSQL = cursor.fetchall() + absentData = {} + for p in ['m', '1', '2', '3', '4', 'n', '5', '6', '7', '8', '9']: + absentData[p] = {} + for i in absentDataSQL: + absentData[i[0]][i[1]] = { + 'status': i[2], + 'note': i[3], + } + return render_template('homeroom.html', currRoom=currRoom, students=students, currDate=currDate, schedule=schedule, submission=submission, currPeriod=currPeriod, studGP=studGP, + dates=dates, absentData=absentData, periods=['m', '1', '2', '3', '4', 'n', '5', '6', '7', '8', '9'], dsboard=DSBOARD, dstext=DSTEXT, dsoffenses=DSOFFENSES, idvDS=idvDS) else: return redirect('/logout') @@ -194,102 +363,206 @@ def manage_admin(g, r, date): ] return manageProcess("admin", data) +@manage.route('/student', methods=['GET']) +def showStudentAbs(): + if (check_login_status()): + return redirect('/logout') + refresh_token() + if not ('user_type' in session and session['user_type'] == 'student'): + return redirect('/') + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT date, period, num, status, note FROM absent WHERE grade=%s AND class_=%s AND num=%s ORDER BY date DESC, period DESC, num ASC", (session['grade'], session['class'], session['num'])) + absentDataSQL = cursor.fetchall() + return render_template("list.html", title="Student Absent List | 學生缺勤紀錄", mode='STUDABS', data=absentDataSQL, currRoom=[session['grade'],session['class']], name=session['name'], num=session['num']) + +@manage.route('/student/ds', methods=['GET']) +def showStudentDS(): + if (check_login_status()): + return redirect('/logout') + refresh_token() + if not ('user_type' in session and session['user_type'] == 'student'): + return redirect('/') + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT date, period, num, note FROM ds WHERE grade=%s AND class_=%s AND num=%s ORDER BY date DESC, period DESC, num ASC", (session['grade'], session['class'], session['num'])) + dsDataSQL = cursor.fetchall() + print(dsDataSQL) + return render_template("list.html", title="Student DS List | 學生定心紀錄", mode='STUDDS', data=dsDataSQL, currRoom=[session['grade'],session['class']], name=session['name'], num=session['num']) + +@manage.route('/manage/abs', methods=['GET']) +def showAllAbs(): + if (check_login_status()): + return redirect('/logout') + refresh_token() + currRoom = session['homeroom'].split('^') + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT num,name,ename FROM students WHERE grade=%s AND class_=%s ORDER BY num ASC", (currRoom[0], currRoom[1])) + studentsSQL = cursor.fetchall() + students = {} + for st in studentsSQL: + students[st[0]] = { + 'name': st[1], + 'ename': st[2], + } + cursor = db.cursor() + cursor.execute("SELECT date, period, num, status, note FROM absent WHERE grade=%s AND class_=%s ORDER BY date DESC, period DESC, num ASC", (currRoom[0], currRoom[1])) + absentDataSQL = cursor.fetchall() + return render_template("list.html", title="Absent List | 缺勤紀錄", mode='ABS', students=students, data=absentDataSQL, currRoom=currRoom) + +@manage.route('/manage/ds', methods=['GET']) +def showAllDS(): + if (check_login_status()): + return redirect('/logout') + refresh_token() + currRoom = session['homeroom'].split('^') + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT num,name,ename FROM students WHERE grade=%s AND class_=%s ORDER BY num ASC", (currRoom[0], currRoom[1])) + studentsSQL = cursor.fetchall() + students = {} + for st in studentsSQL: + students[st[0]] = { + 'name': st[1], + 'ename': st[2], + } + cursor = db.cursor() + cursor.execute("SELECT date, period, num, note FROM ds WHERE grade=%s AND class_=%s ORDER BY date DESC, period DESC, num ASC", (currRoom[0], currRoom[1])) + dsDataSQL = cursor.fetchall() + return render_template("list.html", title="DS List | 定心紀錄", mode='DS', students=students, data=dsDataSQL, currRoom=currRoom) @manage.route('/manage/group_teach_publish', methods=['POST']) def group_teach_publish(): if (check_login_status()): return redirect('/logout') refresh_token() + data = request.form.to_dict() cclass = { - "name": db.child("Classes").child("GP_Class").child(session['category']).child( - "Class").child(session['class']).child("name").get(session['token']).val(), - "category": session['category'], - "class_id": session['class'], - "homerooms": db.child("Classes").child( - "GP_Class").child(session['category']).child("Homerooms").get(session['token']).val() + "category": data.pop('category'), + "class_id": data.pop('class_id') } - date = request.form['date'] - period = request.form['period'] - signature = request.form['signatureData'] - formData = request.form.to_dict() - notes = "" - if 'notes' in request.form: - notes = request.form['notes'] - formData.pop('notes') - signature = removeprefix(signature, 'data:image/png;base64,') - signature = bytes(signature, 'utf-8') - rand = str(date + '^' + cclass['category'] + - '^' + cclass['class_id'] + '^' + period) - rand += ".png" - with open(os.path.join('temp', rand), "wb") as fh: - fh.write(base64.decodebytes(signature)) - storage.child(os.path.join('signatures', rand) - ).put(os.path.join('temp', rand), session['token']) - formData.pop('signatureData') - formData.pop('date') - formData.pop('period') - for i in formData: - i = i.split('^') - db.child("Homerooms").child(i[1]).child(i[2]).child( - "Absent").child(date).child(period).update({i[3]: int(i[0])}, session['token']) - for h in cclass['homerooms']: - h = h.split('^') - if "confirm" in db.child("Homerooms").child(h[0]).child(h[1]).child("Absent").child(date).get(session['token']).val(): + db = refresh_db() + cursor = db.cursor() + cursor.execute("SELECT about FROM gpclasses WHERE category=%s AND subclass=%s", + (cclass['category'], cclass['class_id'])) + cclass["name"] = cursor.fetchone()[0] + cursor.execute("SELECT grade,class_,num,name,ename FROM students WHERE classes LIKE " + '\'%\"'+ cclass['category'] + '\": \"' + cclass['class_id'] +'\"%\'' + " ORDER BY grade ASC,class_ ASC,num ASC") + students = cursor.fetchall() + homerooms = [] + for x in students: + if (str(x[0]) + '^' + str(x[1])) not in homerooms: + homerooms.append(str(x[0]) + '^' + str(x[1])) + data.pop('dsnumbers') + data.pop('dsoffense') + data.pop('dsoffenseother') + date = data.pop('date') + period = data.pop('period') + signature = data.pop('signatureData') + notes = data.pop('notes') + absentData = [] + dsData = [] + for x in data: + xs = x.split('^') + if xs[0] == 'note': continue - db.child("Homerooms").child(h[0]).child(h[1]).child( - "Absent").child(date).child(period).child("signature").update({cclass['class_id']: str(storage.child(os.path.join('signatures', rand)).get_url(None))}, session['token']) - db.child("Homerooms").child(h[0]).child(h[1]).child( - "Absent").child(date).child(period).child("names").child(cclass['class_id']).set(cclass['name'], session['token']) - currPeriodData = db.child("Homerooms").child(h[0]).child(h[1]).child( - "Absent").child(date).child(period).get(session['token']).val() - if 'notes' in currPeriodData: - db.child("Homerooms").child(h[0]).child(h[1]).child( - "Absent").child(date).child(period).update({'notes': currPeriodData['notes']+'; '+notes}, session['token']) + elif xs[0] == 'ds': + dsData.append([xs[1], xs[2].split('-')[0], xs[2].split('-')[1], data[x]]) else: - db.child("Homerooms").child(h[0]).child(h[1]).child( - "Absent").child(date).child(period).update({'notes': notes}, session['token']) - os.remove(os.path.join('temp', rand)) + absentData.append([xs[1], xs[2], xs[3], 'K' if xs[0] == '1' else 'L', data['note^'+xs[1]+'^'+xs[2]+'^'+xs[3]]]) + for h in homerooms: + h = h.split('^') + cursor = db.cursor() + cursor.execute(""" + SELECT signature, notes FROM submission WHERE grade=%s AND class_=%s AND date=%s AND period=%s + """, (h[0], h[1], date, period)) + one = cursor.fetchone() + if one is None: + jSignature = json.dumps({cclass['class_id']: signature}) + cursor.execute(""" + INSERT INTO submission (grade, class_, date, period, signature, notes) + VALUES (%s, %s, %s, %s, %s, %s) + """, (h[0], h[1], date, period, jSignature, notes)) + db.commit() + else: + jSignature = json.loads(one[0]) + if cclass['class_id'] in jSignature: + continue + jSignature[cclass['class_id']] = signature + note = one[1] + '; ' + notes + cursor.execute(""" + UPDATE submission SET signature=%s, notes=%s WHERE grade=%s AND class_=%s AND date=%s AND period=%s + """, (json.dumps(jSignature), note, h[0], h[1], date, period)) + db.commit() + for d in dsData: + cursor = db.cursor() + cursor.execute(""" + INSERT INTO ds (grade, class_, num, date, period, note) + VALUES (%s, %s, %s, %s, %s, %s) + """, (d[0], d[1], d[2], date, period, d[3])) + db.commit() + for a in absentData: + cursor = db.cursor() + cursor.execute(""" + INSERT INTO absent (grade, class_, num, date, period, status, note) + VALUES (%s, %s, %s, %s, %s, %s, %s) + """, (a[0], a[1], a[2], date, period, a[3], a[4])) + db.commit() return redirect('/manage') - @manage.route('/manage/homeroom_abs', methods=['POST']) def homeroom_abs_publish(): if (check_login_status()): return redirect('/logout') refresh_token() - date = request.form['date'] - homeroom = request.form['homeroom'].split('^') - period = request.form['period'] - signature = request.form['signatureData'] - formData = request.form.to_dict() - notes = "" - if "confirm" in db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child("Absent").child(date).get(session['token']).val(): - return redirect('/manage') - if 'notes' in request.form: - notes = request.form['notes'] - formData.pop('notes') - signature = removeprefix(signature, 'data:image/png;base64,') - signature = bytes(signature, 'utf-8') - rand = str(date + '^' + homeroom[0] + '^' + homeroom[1] + '^' + period) - rand += ".png" - with open(os.path.join('temp', rand), "wb") as fh: - fh.write(base64.decodebytes(signature)) - storage.child(os.path.join('signatures', rand) - ).put(os.path.join('temp', rand), session['token']) - formData.pop('signatureData') - formData.pop('date') - formData.pop('homeroom') - formData.pop('period') - formData.pop('stype') - for i in formData: - i = i.split('^') - db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).child(period).update({i[1]: int(i[0])}, session['token']) - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).child(period).update({'signature': str(storage.child(os.path.join('signatures', rand)).get_url(None))}, session['token']) - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).child(period).update({'notes': notes}, session['token']) - os.remove(os.path.join('temp', rand)) + db = refresh_db() + data = request.form.to_dict() + date = data.pop('date') + period = data.pop('period') + signature = data.pop('signatureData') + notes = data.pop('notes') + homeroom = data.pop('homeroom').split('^') + ds1 = data.pop('ds^1') + ds2 = data.pop('ds^2') + ds3 = data.pop('ds^3') + ds4 = data.pop('ds^4') + ds5 = data.pop('ds^5') + ds6 = data.pop('ds^6') + ds7 = data.pop('ds^7') + # 2: L / 1: K + absentData = {} + dsidv = {} + for x in data: + xt = x.split('^') + if (xt[0] == 'note'): + if xt[2] not in absentData: + absentData[xt[2]] = {} + absentData[xt[2]]['note'] = data[x] + elif (xt[0] == 'dsidv'): + dsidv[xt[1]] = data[x] + else: + if xt[1] not in absentData: + absentData[xt[1]] = {} + absentData[xt[1]]['status'] = 'L' if x[0] == '2' else 'K' + cursor = db.cursor() + cursor.execute(""" + INSERT INTO submission + (grade, class_, date, period, signature, ds1, ds2, ds3, ds4, ds5, ds6, ds7, notes) + VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s) + """, (homeroom[0], homeroom[1], date, period, signature, ds1, ds2, ds3, ds4, ds5, ds6, ds7, notes)) + for x in absentData: + cursor.execute(""" + INSERT INTO absent + (grade, class_, date, period, num, status, note) + VALUES (%s, %s, %s, %s, %s, %s, %s) + """, (homeroom[0], homeroom[1], date, period, x, absentData[x]['status'], absentData[x]['note'])) + for x in dsidv: + cursor.execute(""" + INSERT INTO ds + (grade, class_, date, period, num, note) + VALUES (%s, %s, %s, %s, %s, %s) + """, (homeroom[0], homeroom[1], date, period, x, dsidv[x])) + db.commit() return redirect('/manage') @@ -298,69 +571,26 @@ def edit_abs(): if (check_login_status() or not check_permission()): return redirect('/logout') refresh_token() - date = request.form['date'] - homeroom = request.form['homeroom'].split('^') - period = request.form['period'] - signature = "https://firebasestorage.googleapis.com/v0/b/attendance-be176.appspot.com/o/stud_affairs.png?alt=media" - formData = request.form.to_dict() - notes = "" - oldData = list(db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).child(period).shallow().get(session['token']).val()) - for k in oldData: - if k == 'name' or k == 'teacher': - continue - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).child(period).child(k).remove(session['token']) - cfrmstatus = db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).get(session['token']).val() - if "confirm" in cfrmstatus: - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).update({'notes': cfrmstatus['notes'] + '; (確認後學務處有更改)'}, session['token']) - if 'notes' in request.form: - notes = request.form['notes'] - formData.pop('notes') - formData.pop('date') - formData.pop('homeroom') - formData.pop('period') - for i in formData: - i = i.split('^') - db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).child(period).update({i[1]: int(i[0])}, session['token']) - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).child(period).update({'notes': notes}, session['token']) - if cfrmstatus[period]['name'] == 'GP': - db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).child(period).child("signature").set({'STUD_AFFAIR_OFFICE': signature}, session['token']) - db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).child(period).child("names").set({'STUD_AFFAIR_OFFICE': "學務處已編輯"}, session['token']) - else: - db.child("Homerooms").child(homeroom[0]).child( - homeroom[1]).child("Absent").child(date).child(period).child("signature").set(signature, session['token']) - return redirect('/manage/admin/'+homeroom[0]+'/'+homeroom[1]+'/'+date) - + data = request.form.to_dict() + print(data) + return "" @manage.route('/manage/homeroom_confirm', methods=['POST']) def homeroom_confirm(): if (check_login_status()): return redirect('/logout') refresh_token() - homeroom = request.form['homeroom'].split('^') - date = request.form['date'] - if 'notes' in request.form: - notes = request.form['notes'] - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child( - "Absent").child(date).update({"notes": notes}, session['token']) - - signature = request.form['signatureData'] - signature = removeprefix(signature, 'data:image/png;base64,') - signature = bytes(signature, 'utf-8') - rand = str(date + '^' + homeroom[0] + '^' + homeroom[1] + '^' + 'hrCfrm') - rand += ".png" - with open(os.path.join('temp', rand), "wb") as fh: - fh.write(base64.decodebytes(signature)) - storage.child(os.path.join('signatures', rand) - ).put(os.path.join('temp', rand), session['token']) - db.child("Homerooms").child(homeroom[0]).child(homeroom[1]).child("Absent").child(date).update( - {"confirm": str(storage.child(os.path.join('signatures', rand)).get_url(None))}, session['token']) - os.remove(os.path.join('temp', rand)) + data = request.form.to_dict() + homeroom = data.pop('homeroom').split('^') + date = data.pop('date') + signature = data.pop('signatureData') + notes = data.pop('notes') + db = refresh_db() + cursor = db.cursor() + cursor.execute(""" + INSERT INTO submission + (grade, class_, date, period, signature, notes) + VALUES (%s, %s, %s, 'c', %s, %s) + """, (homeroom[0], homeroom[1], date, signature, notes)) + db.commit() return redirect('/manage') diff --git a/requirements.txt b/requirements.txt index 0685704..45c2810 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,19 +1,33 @@ # Automatically generated by https://github.com/damnever/pigar. -# Attendance/app.py: 2 +# Attendance/functions.py: 1,3 Flask == 2.0.1 -# Attendance/app.py: 3 -# Attendance/test.py: 1 -Pyrebase4 == 4.5.0 +# Attendance/functions.py: 19,20,21 +Flask_Admin == 1.5.8 -# Attendance/app.py: 8 +# Attendance/functions.py: 22 +Flask_BabelEx == 0.9.4 + +# Attendance/functions.py: 18 +Flask_SQLAlchemy == 2.5.1 + +# Attendance/functions.py: 15 +mysql_connector_python == 8.0.27 + +# Attendance/functions.py: 10 pandas == 1.1.3 -# Attendance/app.py: 11 -# Attendance/test.py: 3 +# Attendance/functions.py: 14 +passlib == 1.7.4 + +# Attendance/functions.py: 13 python_dotenv == 0.19.0 -# Attendance/app.py: 5 +# Attendance/functions.py: 5 pytz == 2020.1 + +# Attendance/functions.py: 16 +requests == 2.26.0 + gunicorn == 20.1.0 \ No newline at end of file diff --git a/static/allpages.css b/static/allpages.css index b563898..bc87672 100644 --- a/static/allpages.css +++ b/static/allpages.css @@ -3,6 +3,9 @@ body { font-family: "Lato", "Noto Sans TC", "Microsoft JhengHei", "sans-serif"; + -moz-osx-font-smoothing: grayscale; + -webkit-font-smoothing: antialiased; + font-smooth: always; } div.col .row .col { @@ -76,10 +79,30 @@ p.highlightAbs.n-2 { p.highlightAbs.n-3 { color: rgb(15, 184, 0); } +.afterSelButton { + margin-top: 0; +} +.modal-footer>.row { + width: 70%; +} +.modal-footer>.row .col { + border: 0 !important; +} +.modal-footer>.row button { + margin-right: 10px; + margin-top: 0; +} + .margin-top { margin-top: 20px; } +.nomargin-top { + margin-top: 0; +} +.nmb { + margin-bottom: 0; +} input[type="checkbox"].absent, input[type="checkbox"].late { -webkit-appearance: initial; @@ -179,4 +202,23 @@ label { .submitButton { width: 20vw; min-width: auto; +} + +div.ds { + margin-top: 20px; +} +div.dsboard .col, .noborder { + border: 0 !important; +} + +div.container { + text-align: center; +} + +button { + width: 100%; + margin-top: 10px; +} +.text-red { + color: red; } \ No newline at end of file diff --git a/static/login.css b/static/login.css index 8ebb248..763deda 100644 --- a/static/login.css +++ b/static/login.css @@ -1,8 +1,39 @@ -div.container { - text-align: center; +html { + height: 100%; +} +body { + height: 100%; + margin: 0; + background-repeat: no-repeat; + background-attachment: fixed; + background: linear-gradient(to bottom right, #e4e4e4 0%, #afafaf 100%); } -button { - width: 100%; - margin-top: 10px; +div.loginPanel { + background: #effffc; + margin-top: 100px; + padding: 30px; + box-shadow: 0 0 10px black; + z-index: -1; +} + +div.container { + max-width: 730px; +} + +h1 .img { + height: calc(1.375rem + 1.5vw); +} +@media (min-width: 1200px) { + h1 .img { + height: 2.5rem; + } +} +h1 .img img { + vertical-align: sub; +} +#subuser_sel { + width: 80%; + margin-left: auto; + margin-right: auto; } \ No newline at end of file diff --git a/static/nav.css b/static/nav.css new file mode 100644 index 0000000..8b191d5 --- /dev/null +++ b/static/nav.css @@ -0,0 +1,66 @@ +#sidebar { + min-width: 270px; + max-width: 270px; + background: #5b5e69; + color: #fff; + -webkit-transition: all 0.3s; + -o-transition: all 0.3s; + transition: all 0.3s; + position: fixed; + top: 0; + height: 100%; } + #sidebar.active { + min-width: 80px; + max-width: 80px; + text-align: center; } + #sidebar.active ul.components li { + font-size: 14px; } + #sidebar.active ul.components li a { + padding: 10px 0; } + #sidebar.active ul.components li a span { + margin-right: 0; + display: block; + font-size: 24px; } + #sidebar.active .logo { + padding: 10px 0; } + #sidebar.active .footer { + display: none; } + #sidebar .logo { + display: block; + color: #fff; + font-weight: 900; + padding: 10px 30px; + } + #sidebar ul.components { + padding: 0; } + #sidebar ul li { + font-size: 16px; } + #sidebar ul li > ul { + margin-left: 10px; } + #sidebar ul li > ul li { + font-size: 14px; } + #sidebar ul li a { + padding: 10px 30px; + display: block; + color: white; + border-bottom: 1px solid rgba(255, 255, 255, 0.1); } + #sidebar ul li a span { + margin-right: 15px; } + @media (max-width: 991.98px) { + #sidebar ul li a span { + display: block; } } + #sidebar ul li a:hover { + color: #fff; } + #sidebar ul li.active > a { + background: transparent; + color: #fff; } + @media (max-width: 991.98px) { + #sidebar { + min-width: 80px; + max-width: 80px; + text-align: center; + margin-left: -80px !important; } + #sidebar.active { + margin-left: 0 !important; } } +#sidebar a { + text-decoration: none; } \ No newline at end of file diff --git a/static/nav.js b/static/nav.js new file mode 100644 index 0000000..cf8504e --- /dev/null +++ b/static/nav.js @@ -0,0 +1,10 @@ +$(window).resize(function() { + var sidebar = document.getElementById('sidebar'); + var container = document.getElementsByClassName('container')[0]; + container.style.paddingLeft = 'calc(.75rem + ' + sidebar.offsetWidth + 'px)'; +}); +document.addEventListener("DOMContentLoaded", function(event){ + var sidebar = document.getElementById('sidebar'); + var container = document.getElementsByClassName('container')[0]; + container.style.paddingLeft = 'calc(.75rem + ' + sidebar.offsetWidth + 'px)'; +}) \ No newline at end of file diff --git a/static/pagejs/group_teach.js b/static/pagejs/group_teach.js index 1dd8633..b2a6251 100644 --- a/static/pagejs/group_teach.js +++ b/static/pagejs/group_teach.js @@ -1,6 +1,14 @@ var signaturePad, selPeriod, canvas, width = $(window).width(), modal; +var indDS = {}; function submitForm() { if (!signaturePad.isEmpty()) { + for (var i in indDS) { + var tmp = document.createElement('input'); + tmp.type = 'hidden'; + tmp.name = 'ds^' + i; + tmp.value = indDS[i]; + document.getElementById('attendanceData^' + selPeriod).appendChild(tmp); + } $('#' + modal).modal('hide'); loadingAnimation(); signaturePad.off(); @@ -50,12 +58,36 @@ function viewSignature(period) { }); resizeCanvas(); } -function unCheckAbs(string) { - document.getElementById('absent^' + string).checked = false; -} function unCheckLate(string) { document.getElementById('late^' + string).checked = false; + strForNote = string.substring(string.indexOf("^") + 1); + if (document.getElementById("absent^" + string).checked == true && !!!document.getElementById("note^"+strForNote)) { + var tmp = document.createElement('input') + tmp.type = 'text' + tmp.id = 'note^'+strForNote + tmp.name = 'note^'+strForNote + tmp.className = 'form-control' + document.getElementById('input^' + string).appendChild(tmp) + } else if (document.getElementById("absent^" + string).checked == false) { + document.getElementById('note^' + strForNote).remove(); + } + } +function unCheckAbs(string) { + document.getElementById('absent^' + string).checked = false; + strForNote = string.substring(string.indexOf("^") + 1); + if (document.getElementById("late^" + string).checked == true && !!!document.getElementById("note^"+strForNote)) { + var tmp = document.createElement('input') + tmp.type = 'text' + tmp.id = 'note^'+strForNote + tmp.name = 'note^'+strForNote + tmp.className = 'form-control' + document.getElementById('input^' + string).appendChild(tmp) + } else if (document.getElementById("late^" + string).checked == false) { + document.getElementById('note^' + strForNote).remove(); + } +} + function loadingAnimation() { $("div.container").hide(); @@ -70,3 +102,18 @@ function chgDate(sel) { document.body.appendChild(new_form); new_form.submit(); } +function addDS() { + if ($('#dsnumbersel').val() == "" || $('#dsoffensesel').val() == "") { + return; + } + var text = $('#dsoffensesel').val() + if ($('#dsoffenseother').val() != "") { + text = text.concat(": ", $('#dsoffenseother').val()); + } + indDS[$("#dsnumbersel").val()] = text; + $('#inddsview>.col').append('
'+$("#dsnumbersel").val()+'
'+text+'
'+$("#dsnumbersel").val()+'
'+text+'
+ {% include 'sidebar.html' %}
Admin View | 管理頁面
-{{homeroomCode[0]}} {{homeroomCode[1]}}
+{{currRoom[0]}} {{currRoom[1]}}
[{{currDate}}]
- {% if 'confirm' in absData[currDate] %} + {% if 'c' in submission %}Homeroom Confirmed 班導已確認
{% else %}Homeroom NOT Confirmed 班導尚未確認
{% endif %} - -
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
+
{% endfor %}
- {% for i in homeroomData %}
+ {% for i in students %}
班級
@@ -77,7 +47,7 @@
{% for i in periods %}
- {{absData[currDate][i]['name']}}
+ {{schedule[i]['subject']}} {% if schedule[i]['special'] == True %} (換) {% endif %}
@@ -86,73 +56,101 @@
{% for i in periods %}
-
{{absData[currDate][i]['teacher']}}
+ {{schedule[i]['teacher']}}
{% endfor %}
-
{% endfor %}
- {% if showUpload == '1' %}
- {{homeroomCode[0]}}{{homeroomCode[1]}}
- {{i}}
- {{ homeroomData[i]['name'] }}
- {{ homeroomData[i]['eng_name'] }}
+ {{currRoom[0]}}{{currRoom[1]}}
+ {{ i[0] }}
+ {{ i[1] }}
+ {{ i[2] }}
{% for j in periods %}
- {% if 'signature' in absData[currDate][j] %}
- {% if i in absData[currDate][j] %}
- {% if absData[currDate][j][i] == 1 %}
-
{% endfor %}
X
+ {% if schedule[j]['subject'] == 'GP' %} + {% for k in submission[j] %} + {% if studGP[i[0]][schedule[j]['teacher']] == k %} + {% if i[0] in absentData[j] %} + {% if absentData[j][i[0]]['status'] == 'L' %} +𝜑
+ {% elif absentData[j][i[0]]['status'] == 'K' %} +礦
+ {% elif absentData[j][i[0]]['status'] == 'G' %} +事
+ {% elif absentData[j][i[0]]['status'] == 'S' %} +病
+ {% elif absentData[j][i[0]]['status'] == 'F' %} +喪
+ {% elif absentData[j][i[0]]['status'] == 'P' %} +疫
+ {% elif absentData[j][i[0]]['status'] == 'O' %} +公
{% else %} -𝜑
+{{absentData[j][i[0]]['status']}}
{% endif %} +{{absentData[j][i[0]]['note']}}
{% else %} - {% if absData[currDate][j]['name'] != 'GP' %} -V
- {% else %} - {% if (homeroomData[i]['GP_Class'][absData[currDate][j]['teacher']] in - absData[currDate][j]['signature'] or 'STUD_AFFAIR_OFFICE' in absData[currDate][j]['signature'])%} -V
- {% else %} - +V
+ {% if j in idvDS and i[0] in idvDS[j] %} +{{idvDS[j][i[0]]}}
{% endif %} {% endif %} - {% endif %} - {% elif absData[currDate][j]['name'] == 'GP' %} - {% else %} - {% if 'confirm' in absData[currDate] %} - - {% else %} - + + {% endif %} + {% endfor %} + {% else %} + {% if j in submission %} + {% if i[0] in absentData[j] %} + {% if absentData[j][i[0]]['status'] == 'L' %} +𝜑
+ {% elif absentData[j][i[0]]['status'] == 'K' %} +礦
+ {% elif absentData[j][i[0]]['status'] == 'G' %} +事
+ {% elif absentData[j][i[0]]['status'] == 'S' %} +病
+ {% elif absentData[j][i[0]]['status'] == 'F' %} +喪
+ {% elif absentData[j][i[0]]['status'] == 'P' %} +疫
+ {% elif absentData[j][i[0]]['status'] == 'O' %} +公
+ {% else %} +{{absentData[j][i[0]]['status']}}
+ {% endif %} +{{absentData[j][i[0]]['note']}}
+ {% else %} +V
+ {% if j in idvDS and i[0] in idvDS[j] %} +{{idvDS[j][i[0]]}}
+ {% endif %} + {% endif %} + {% else %} + {% endif %} - {% endif %}
+ {% for i in range(7) %}
+
+
- {% endif %}
-
+ {% endfor %}
{% for c in range(periods|length + 1) %}
{% if c % 4 == 0 %}
{{dstext[i]}}
+ {{dsboard[i]}}
+ {% for j in periods %}
+ {% if j in submission and schedule[j] != 'GP' %}
+
+ {{submission[j]['ds' + (i+1)|string]}}
+ {% else %}
-
- {% for i in periods %}
-
- {% if ('signature' in absData[currDate][i] or 'confirm' in absData[currDate][i]) %}
-
- {% endif %}
-
+ {% endif %}
{% endfor %}
@@ -160,38 +158,41 @@
{% if c == 0 %}
- 
+ 
- {% if loop.index == loop.length %}
-
備註: {{absData[currDate][periods[c-1]]['notes']}} + {{schedule[periods[c-1]]['teacher']}}: {{i}}
+ 
+ {% if loop.index == loop.length-1 %}
+
備註: {{submission[periods[c-1]]['notes']}} {% endif %}
+ {% endif %}
{% endfor %}
{% else %}
-
{% if showUpload == '1' %}
Homeroom Teacher 導師
- {% if 'confirm' in absData[currDate] %}
- 備註: {{absData[currDate]['notes']}}
+ {% if 'c' in submission %}
+ 備註: {{submission['c']['notes']}}
{% else %}
No Signature 導師尚未簽名
{% endif %}
{% else %}
- {% if absData[currDate][periods[c-1]]['name'] == 'GP' %}
- {% if 'signature' in absData[currDate][periods[c-1]] %}
- {% for i in absData[currDate][periods[c-1]]['signature'] %}
+ {% if schedule[periods[c-1]]['subject'] == 'GP' %}
+ {% if periods[c-1] in submission %}
+ {% for i in submission[periods[c-1]] %}
+ {% if i != 'notes' %}
{{periods[c-1]}}:
- {{absData[currDate][periods[c-1]]['teacher']}}: {{i}}:
- {{absData[currDate][periods[c-1]]['names'][i]}}
- 備註: {{absData[currDate][periods[c-1]]['notes']}} + {{schedule[periods[c-1]]['teacher']}}: {{i}}
備註: {{submission[periods[c-1]]['notes']}} {% endif %}
{{periods[c-1]}}:
- {{absData[currDate][periods[c-1]]['teacher']}}: No
+ {{schedule[periods[c-1]]['subject']}}: {{i}}: No
Signature
{% endif %}
{% else %}
- {{periods[c-1]}}: {{absData[currDate][periods[c-1]]['name']}}:
- {{absData[currDate][periods[c-1]]['teacher']}}
+ 
備註: - {{absData[currDate][periods[c-1]]['notes']}}
+ {% if periods[c-1] in submission %}
+ 
備註: + {{submission[periods[c-1]]['notes']}}
+ {% endif %}
{% endif %}
{% endif %}
@@ -200,29 +201,6 @@
{% endif %}
{% endfor %}
{{periods[c-1]}}: {{schedule[periods[c-1]]['subject']}}:
+ {{schedule[periods[c-1]]['teacher']}}
- 備註: - {{absData[currDate][periods[c-1]]['notes']}}
備註: + {{submission[periods[c-1]]['notes']}}
diff --git a/templates/admin/index.html b/templates/admin/index.html
new file mode 100644
index 0000000..7ca2307
--- /dev/null
+++ b/templates/admin/index.html
@@ -0,0 +1,82 @@
+{% extends 'admin/master.html' %}
+
+{% block body %}
+
+
+Attendance 點名系統 (β)
+ Attendance 點名系統 2.0
@@ -24,69 +24,62 @@
歡迎 後台管理
+請利用上方選單選取功能
+特殊功能
+-
+
- 為保障用戶安全,Users 的密碼欄為
sha256_crypt.hash,請使用 Python 產生出後輸入,或先改 Email,寄忘記密碼信,最後再改回來。
+ password的 hash 為$5$rounds=535000$VjoY30Bt535dL/7x$xXmg8BZ3VJe/odbQQ5hd0uPmb1o9EhHkJmwWWTc8K21
+ - 為簡化程式,Students->Classes, GPClasses->Accs, Homerooms->Accs, 分組課的 Submission->Notes 都使用標準 JSON 格式輸入,請留意 +
- 請假代碼
++ +
++ +遲到 +曠課 +事假 +病假 +喪假 +疫情假 +公假 ++ +L +K +G +S +F +P +O +
+ - 使用者代碼
++ +
++ +超級管理員 +管理員 +一般使用者 ++ + +S +A +R +
+
-
+
-
-
Attendance 點名系統 (β) | Change Password 更改密碼
-
-
-
-