hotfix

2025-07-05 10:13:28 +02:00 · 2025-07-05 10:13:28 +02:00 · a95e8a00b8
commit a95e8a00b8
parent eeda5062ae
7 changed files with 46 additions and 39 deletions
--- a/Server/Host/flaskApp.py
+++ b/Server/Host/flaskApp.py
@ -37,7 +37,7 @@ login_manager.init_app(app)

 if config['OTHER']['first_startup'] == 'True':
    print("Please enter a Secure Admin Password:")
-    add._create_user('Admin',input())
+    add._create_user(config['SETTINGS']['user'],input())
    config.set('OTHER', 'first_startup', 'False')
    with open('Options.ini', 'w') as configfile:
        config.write(configfile)
@ -112,9 +112,9 @@ def orders(): #TODO on new orderGet refresh orders list
@app.route("/order_get", methods=['GET','POST'])
 def order_get():
    desk= 1
-
+    global config
    #POST order
-    if request.method == 'POST' and config['SETTINGS']['lockqrcode_whit_secret'] == True:
+    if request.method == 'POST' and config['SETTINGS']['lockqrcode_whit_secret'] == 'True':
        ordered_list = []
        desk = request.form['desk']
        form = request.form
@ -133,18 +133,17 @@ def order_get():
    elif request.method == 'GET':
        desk = int(request.args['desk'])
        secret = int(request.args['secret'])
-        try:#TODO FIX! #Feature = True #TODO:Encryption Salting hasing and anti rainbow attack for qr code?? (needed?) 
-            if config['SETTINGS']['lockqrcode_whit_secret'] and compare.is_QRSecret_valid(desk,secret):
-                return render_template('index.html', desk=desk, MAX_DESKS=config['DEFAULT']['max_desks'], orderableItems = get.valid_products(get_json_=True))
-            elif config['SETTINGS']['lockqrcode_whit_secret'] == False:
-                return render_template('index.html', desk=desk, MAX_DESKS=config['DEFAULT']['max_desks'],orderableItems = get.valid_products(get_json_=True))
-            return '<h1>404 wrong Secret?</h1>' #TODO Make the HTML prettier for all 
-        except:
-            return '<h1>Server/code issue?</h1>'
-    elif config['SETTINGS']['lockqrcode_whit_secret'] == True:
+        if config['SETTINGS']['lockqrcode_whit_secret'] == 'True' and compare.is_QRSecret_valid(desk,secret):
+            return render_template('index.html', desk=desk, MAX_DESKS=int(config['DEFAULT']['max_desks']), orderableItems = get.valid_products(get_json_=True))
+        elif config['SETTINGS']['lockqrcode_whit_secret'] == 'False':
+            return render_template('index.html', desk=desk, MAX_DESKS=int(config['DEFAULT']['max_desks']),orderableItems = get.valid_products(get_json_=True))
+        else:
+            return '<h1>Somethign went wrong try again.</h1>' #TODO Make the HTML prettier for all 
+        return '<h1>404 wrong Secret?</h1>' #TODO Make the HTML prettier for all 
+    elif config['SETTINGS']['lockqrcode_whit_secret'] == 'True':
        return '<h1>your LOCKQRCODE is invalid.</h1>'
    else:
-        return render_template('index.html',desk=desk, MAX_DESKS=config['DEFAULT']['max_desks'],orderableItems = get.valid_products(get_json_=True))
+        return render_template('index.html',desk=desk, MAX_DESKS=int(config['DEFAULT']['max_desks']),orderableItems = get.valid_products(get_json_=True))

 app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///db.db'
 app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False