{% extends "introduction/base.html" %}
{% block content %}
{% block title %}
INJECTION LAB
{% endblock %}
{% comment %} -------------------------------------------------------------------------- {% endcomment %}
def ssti_lab(request):
if request.user.is_authenticated:
if request.method=="GET":
users_blogs = Blogs.objects.filter(author=request.user)
return render(request,"Lab_2021/A3_Injection/ssti_lab.html", {"blogs":users_blogs})
elif request.method=="POST":
blog = request.POST["blog"]
id = str(uuid.uuid4()).split('-')[-1]
blog = filter_blog(blog)
prepend_code = "{% extends 'introduction/base.html' %}\
{% block content %}{% block title %}\
SSTI-Blogs\
{% endblock %}"
blog = prepend_code + blog + "{% endblock %}"
new_blog = Blogs.objects.create(author = request.user, blog_id = id)
new_blog.save()
dirname = os.path.dirname(__file__)
filename = os.path.join(dirname, f"templates/Lab_2021/A3_Injection/Blogs/{id}.html")
file = open(filename, "w+")
file.write(blog)
file.close()
return redirect(f'blog/{id}')
else:
return redirect('login')
{% endblock %}