stackoom
  简体   繁体   中英

Comparing same string where one is from Flask and one from a sqlite3 database

 原文  2014-12-24 07:00:14       python/ encoding/ character-encoding/ sqlite/ flask

Question

In a login authentication module for a webapp, I'm trying to compare two values; a user entered password, and a password hash that is stored in a sqlite3 database (the hash just being the string 'password' for now). The code is as follows: 

@app.route("/login", methods=["GET", "POST"])
def login():
    if request.method == "POST":
        if request.form['login'] == 'Login':
            username = request.form['username']
            user_password = request.form['password']
            #print query_db("SELECT * FROM Users WHERE Username=?", username, one=True)[0]
            try:
                user = User(query_db("SELECT * FROM Users WHERE Username=?", username, one=True)[0])
                print user.hash

            except IndexError:
                return "INVALID USERNAME!"
            hash = User.hash
            print hash
            #print whatisthis(hash)
            print user_password
            #print whatisthis(user_password)
            if user_password == hash:
                print "wooo!"
                #login_user(user)
                #flash("Logged in successfully.")
                return "LOGIN SUCCESS!"
                #return redirect(request.args.get("next") or url_for("index"))
            else:
                return "INVALID PASSWORD!"
    return render_template("login.html")

User is a class that gets its attributes (like .hash) from the database after accessing the database through the ID. The print statements are simply for debugging, and they do show correctly the two strings ( hash or User.hash , and user_password ) to be identical when printing them to the terminal. However, they do not evaluate True in the if user_password == hash statement for some reason, always defaulting to the else case. Additionally, if I try to perform .encode('base64') on both strings, user_password properly changes to base64, however hash or User.hash stays the same even after the .encode!

Thanks a lot for your help with this odd problem!

1 answers

solution1
 4 ACCPTED  2014-12-24 07:32:16

User hash = user.hash rather than hash = User.hash . 

>>> class User:
...     hash = ""
...     def __init__(self, hash):
...             self.hash = hash
...
>>> u1 = User("hash1")
>>> User.hash
''
>>> u1.hash
'hash1'

If you didn't set User.hash somewhere else in your code, User.hash will still has default value which is '' . Therefore, since your User.hash is "password" , it is very likely to be set by other code.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Select one record from database Flask/Sqlite Connecting to sqlite3 database from Flask application and printing data on a webpage Merging two SQLite tables from the same database with python and sqlite3 SQLITE3 DB data transfer from one field to another in the same table and same row sqlite3 in Python: Update a column in one table through a column from another table when the primary key is the same Access SQLite3 database that is located up one directory from application folders Merge all tables from SQLite3 database into one single pandas dataframe Sqlite3 not reading from database Using Flask and SQLite, how do I migrate from one database schema to a new one? sqlite3 inserting primary key data from one table into another
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM