投稿や更新の制限を解除
This commit is contained in:
yuuki
11
app.py
11
app.py
@@ -299,7 +299,6 @@ def route_admin_songs_new():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'admin/songs/new', methods=['POST'])
|
@app.route(basedir + 'admin/songs/new', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@admin_required(level=100)
|
@admin_required(level=100)
|
||||||
def route_admin_songs_new_post():
|
def route_admin_songs_new_post():
|
||||||
output = {'title_lang': {}, 'subtitle_lang': {}, 'courses': {}}
|
output = {'title_lang': {}, 'subtitle_lang': {}, 'courses': {}}
|
||||||
@@ -352,7 +351,6 @@ def route_admin_songs_new_post():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'admin/songs/<int:id>', methods=['POST'])
|
@app.route(basedir + 'admin/songs/<int:id>', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@admin_required(level=50)
|
@admin_required(level=50)
|
||||||
def route_admin_songs_id_post(id):
|
def route_admin_songs_id_post(id):
|
||||||
song = db.songs.find_one({'id': id})
|
song = db.songs.find_one({'id': id})
|
||||||
@@ -427,7 +425,6 @@ def route_admin_users():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'admin/users', methods=['POST'])
|
@app.route(basedir + 'admin/users', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@admin_required(level=50)
|
@admin_required(level=50)
|
||||||
def route_admin_users_post():
|
def route_admin_users_post():
|
||||||
admin_name = session.get('username')
|
admin_name = session.get('username')
|
||||||
@@ -522,7 +519,6 @@ def route_api_config():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/register', methods=['POST'])
|
@app.route(basedir + 'api/register', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
def route_api_register():
|
def route_api_register():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
if not schema.validate(data, schema.register):
|
if not schema.validate(data, schema.register):
|
||||||
@@ -564,7 +560,6 @@ def route_api_register():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/login', methods=['POST'])
|
@app.route(basedir + 'api/login', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
def route_api_login():
|
def route_api_login():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
if not schema.validate(data, schema.login):
|
if not schema.validate(data, schema.login):
|
||||||
@@ -592,7 +587,6 @@ def route_api_login():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/logout', methods=['POST'])
|
@app.route(basedir + 'api/logout', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@login_required
|
@login_required
|
||||||
def route_api_logout():
|
def route_api_logout():
|
||||||
session.clear()
|
session.clear()
|
||||||
@@ -600,7 +594,6 @@ def route_api_logout():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/account/display_name', methods=['POST'])
|
@app.route(basedir + 'api/account/display_name', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@login_required
|
@login_required
|
||||||
def route_api_account_display_name():
|
def route_api_account_display_name():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
@@ -621,7 +614,6 @@ def route_api_account_display_name():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/account/don', methods=['POST'])
|
@app.route(basedir + 'api/account/don', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@login_required
|
@login_required
|
||||||
def route_api_account_don():
|
def route_api_account_don():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
@@ -647,7 +639,6 @@ def route_api_account_don():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/account/password', methods=['POST'])
|
@app.route(basedir + 'api/account/password', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@login_required
|
@login_required
|
||||||
def route_api_account_password():
|
def route_api_account_password():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
@@ -696,7 +687,6 @@ def route_api_account_remove():
|
|||||||
|
|
||||||
|
|
||||||
@app.route(basedir + 'api/scores/save', methods=['POST'])
|
@app.route(basedir + 'api/scores/save', methods=['POST'])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
@login_required
|
@login_required
|
||||||
def route_api_scores_save():
|
def route_api_scores_save():
|
||||||
data = request.get_json()
|
data = request.get_json()
|
||||||
@@ -808,7 +798,6 @@ def send_upload(ref):
|
|||||||
return cache_wrap(flask.send_from_directory("public/upload", ref), 3600)
|
return cache_wrap(flask.send_from_directory("public/upload", ref), 3600)
|
||||||
|
|
||||||
@app.route("/api/upload", methods=["POST"])
|
@app.route("/api/upload", methods=["POST"])
|
||||||
@limiter.limit("4 per hour")
|
|
||||||
def upload_file():
|
def upload_file():
|
||||||
try:
|
try:
|
||||||
# POSTリクエストにファイルの部分がない場合
|
# POSTリクエストにファイルの部分がない場合
|
||||||
|
|||||||
Reference in New Issue
Block a user