implemented encyption

2022-10-09 15:14:14 +02:00
parent 274549f04b
commit 048eea106e
4 changed files with 56 additions and 51 deletions
--- a/services/encryption.py
+++ b/services/encryption.py
@@ -1,4 +1,6 @@
 class Encryption:
+    ENCRYTPION_KEY = "MASTER_KEY"
+
    @staticmethod
    def vigenere(text: str, key: str, encrypt=True):
        result = ''
@@ -17,9 +19,9 @@ class Encryption:
        return result

    @staticmethod
-    def encrypt(text: str, key: str):
-        return Encryption.vigenere(text=text, key=key, encrypt=True)
+    def encrypt(text: str):
+        return Encryption.vigenere(text=text, key=Encryption.ENCRYTPION_KEY, encrypt=True)

    @staticmethod
-    def decrypt(text: str, key: str):
-        return Encryption.vigenere(text=text, key=key, encrypt=False)
+    def decrypt(text: str):
+        return Encryption.vigenere(text=text, key=Encryption.ENCRYTPION_KEY, encrypt=False)
--- a/services/search.py
+++ b/services/search.py
@@ -6,22 +6,29 @@ class Search:
    @staticmethod
    def search_members(query):
        cur = Database.connection.cursor()
-        cur.execute("""
-                SELECT * FROM users WHERE 
-                id LIKE ? OR
-                username LIKE ? OR
-                firstname LIKE ? OR
-                lastname LIKE ? OR
-                email LIKE ? OR
-                phone LIKE ?
-            """, (f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%"))
+        # cur.execute("""
+        #         SELECT * FROM users WHERE 
+        #         id LIKE ? OR
+        #         username LIKE ? OR
+        #         firstname LIKE ? OR
+        #         lastname LIKE ? OR
+        #         email LIKE ? OR
+        #         phone LIKE ?
+        #     """, (f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%", f"%{query}%"))
+        
+        cur.execute("""SELECT * FROM users""")
        rows = cur.fetchall()
        
        payload = []
        for row in rows:
            user = User(Database.connection)._set_row_values(row)
-            if user.role == "MEMBER":
+            if str(user.id) == user.id:
                payload.append(user)
+                continue
+
+            if user.role == "MEMBER":
+                if user.username in query or user.firstname in query or user.lastname in query or user.email in query or user.phone in query:
+                    payload.append(user)
    
        return payload

@@ -42,8 +49,13 @@ class Search:
        payload = []
        for row in rows:
            user = User(Database.connection)._set_row_values(row)
-            if user.role == "ADVISOR":
+            if str(user.id) == user.id:
                payload.append(user)
+                continue
+            
+            if user.role == "ADVISOR":
+                if user.username in query or user.firstname in query or user.lastname in query or user.email in query or user.phone in query:
+                    payload.append(user)
    
        return payload

@@ -64,9 +76,14 @@ class Search:
        payload = []
        for row in rows:
            user = User(Database.connection)._set_row_values(row)
-            if user.role == "SYSTEM_ADMIN":
+            if str(user.id) == user.id:
                payload.append(user)
-    
+                continue
+            
+            if user.role == "SYSTEM_ADMIN":
+                if user.username in query or user.firstname in query or user.lastname in query or user.email in query or user.phone in query:
+                    payload.append(user)
+                    
        return payload
    
    @staticmethod