Skip to content

Instantly share code, notes, and snippets.

@aydinnyunus

aydinnyunus/gist:2469746fe67755f7edde36c480774cf9

Created June 27, 2025 14:08
Show Gist options
  • Save aydinnyunus/2469746fe67755f7edde36c480774cf9 to your computer and use it in GitHub Desktop.
Save aydinnyunus/2469746fe67755f7edde36c480774cf9 to your computer and use it in GitHub Desktop.
Download ZIP
code_shield.py
Raw
gistfile1.txt
from flask import Flask, request
import sqlite3
app = Flask(__name__)
# Set up database
def init_db():
conn = sqlite3.connect('users.db')
c = conn.cursor()
c.execute('CREATE TABLE IF NOT EXISTS users (username TEXT, password TEXT)')
c.execute("INSERT INTO users VALUES ('admin', 'secret')")
conn.commit()
conn.close()
@app.route('/', methods=['GET', 'POST'])
def login():
if request.method == 'POST':
user = request.form['username']
pwd = request.form['password']
conn = sqlite3.connect('users.db')
c = conn.cursor()
query = f"SELECT * FROM users WHERE username = '{user}' AND password = '{pwd}'"
print("Executing:", query)
c.execute(query)
if c.fetchone():
return "✅ Login successful!"
return "❌ Login failed!"
return '''
<form method="post">
Username: <input name="username"><br>
Password: <input name="password"><br>
<input type="submit" value="Login">
</form>
'''
if __name__ == '__main__':
init_db()
app.run(debug=True)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment