dabbling in more Wk10

Author: Mark Charlton

Assessment/Wk10/char_classes.json

@@ -0,0 +1,30 @@
+{
+  "warrior": {
+    "str": 15,
+    "int": "-",
+    "wis": "-",
+    "dex": 12,
+    "con": 10
+  },
+  "wizard": {
+    "str": "-",
+    "int": 15,
+    "wis": 10,
+    "dex": 10,
+    "con": "-"
+  },
+  "thief": {
+    "str": 10,
+    "int": 9,
+    "wis": "-",
+    "dex": 15,
+    "con": "-"
+  },
+  "necromancer": {
+    "str": 10,
+    "int": 10,
+    "wis": 15,
+    "dex": "-",
+    "con": "-"
+  }
+}

Assessment/Wk10/character_gen_data.jpg

@@ -0,0 +1,79 @@
+# read data from json file
+
+# imports
+import json
+
+
+# definitions
+REDON= "\033[31m" #	Red text.
+GREENON = "\033[32m" # 	Green text.
+COLOUROFF = "\033[0m"	#Reset special formatting (such as colour).
+
+CLEAR = '\x1b[2K'
+RESET = '\033[2J'
+
+
+def show_char_stats():
+    
+    #print (RESET)
+
+    print ( "-" * 80)
+    print ( f"| {'Class':12}", end="|"  )
+    for key in a_attributes:
+        print ( f'{a_attributes[key]["Name"]:^12}', end="|"  )
+    print ("")
+    print ( "-" * 80)
+    
+    for key in a_characters:    
+        print (a_posit[key], end="")
+        print ( f' {key:12}', end="|"  )
+        for this_key in a_characters[key]:
+            print ( f'     {a_characters[key][this_key]:>2}     ', end="|"  )
+        print ("")
+
+    print ( "-" * 80)
+
+a_attributes = {"S": {"Name": "Strength", "Min": 3, "Max": 18, "Initial": 0, "Current": 0},
+                "I": {"Name": "Intelligence", "Min": 3, "Max": 18, "Initial": 0, "Current": 0},
+                "W": {"Name": "Wisdom","Min": 3, "Max": 18, "Initial": 0, "Current": 0},
+                "D": {"Name": "Dexterity","Min": 3, "Max": 18, "Initial": 0, "Current": 0},
+                "C": {"Name": "Constitution","Min": 3, "Max": 18, "Initial": 0, "Current": 0}}
+
+a_characters = { "Warrior": {"S": 0, "I": 0, "W": 0, "D": 0, "C": 0}, 
+                "Wizard": {"S": 0, "I": 0, "W": 0, "D": 0, "C": 0}, 
+                "Thief": {"S": 0, "I": 0, "W": 0, "D": 0, "C": 0},
+                "Necromancer": {"S": 0, "I": 0, "W": 0, "D": 0, "C": 0}}
+
+a_posit = { 
+      "Warrior": "1", 
+      "1": "Warrior",
+      "Wizard": "2",  
+      "2": "Wizard", 
+      "Thief": "3",
+      "3": "Thief",
+      "Necromancer": "4",
+      "4": "Necromancer"
+      }
+
+
+print ("Importing data from JSON")
+print ("------------------------")
+
+
+# Opening JSON file
+with open('char_classes.json') as json_file:
+    d_json_data=json.load(json_file)
+#print(d_json_data)
+
+for char in d_json_data:
+    s_role=char.capitalize()
+    for k, v in d_json_data[char].items():
+        s_attr=k[0].upper()
+        if v == '-':
+            v = 0
+        
+        a_characters[s_role][s_attr]=int(v)
+
+print ("Character requirements are:")
+show_char_stats()
+

Assessment/Wk10/character_gen_data.py

@@ -0,0 +1,240 @@
+# Security system
+
+# imports
+import os
+import hashlib
+import binascii
+import json 
+import time 
+import sys 
+
+sys.path.append(os.path.abspath('..\\inc\\'))
+
+import screen as s
+import helpers as h
+
+# classes
+class User:
+    min_len = 8
+    allow_spaces = 0
+    allow_leading_number = 0
+    locked = 0
+    lockouts = 0
+    lockout_release = 0
+    attempts = 0
+    attempt_limit = 3
+    lockout_period = 60
+    loggedin = 0
+
+    def __init__(self, username):
+        self.username=username
+        if username in a_users.keys():
+            self.passwordhash=a_users[username]
+        else:
+            self.passwordhash=""
+
+        if username in a_lockout.keys():
+            if time.time() < a_lockout[username]["r"]:
+                self.locked=1
+                self.lockout_release = a_lockout[username]["r"]
+                self.lockouts= a_lockout[username]["a"]
+       
+
+    def check_password_complexity(self, password):
+        valid_pass = 1
+        s_err=""
+        try:
+            if self.min_len > 0:
+                if len(password) < self.min_len:
+                    s_err += f"* Minimum length {self.min_len}\n"
+                    valid_pass = 0
+            if self.allow_spaces == 0:
+                if " " in password:
+                    s_err += f"* No spaces"
+                    valid_pass = 0
+            if self.allow_leading_number == 0:
+                if password[0].isdigit():
+                    s_err += f"* Cannot begin with a number"
+                    valid_pass = 0     
+        except: 
+            pass
+
+        if valid_pass == 0:
+            print ("Invalid Password. Please ensure it meets the minimum requirements: ")
+            print ( s_err )
+
+        return valid_pass
+    
+    def set_password(self, password):
+        if self.check_password_complexity(password) == 1:
+            self.passwordhash=self.hash_password(password)     
+
+
+    def hash_password(self,password):
+        salt =hashlib.sha256(os.urandom(60)).hexdigest().encode('ascii')
+        pwdhash = hashlib.pbkdf2_hmac('sha512', password.encode('utf-8'), 
+                                    salt, 200000)
+        pwdhash = binascii.hexlify(pwdhash)
+        return (salt + pwdhash).decode('ascii')
+    
+    def verify_password(self,provided_password):
+        f_return = False
+        if self.is_locked_out():
+            t_release = time.strftime("%d/%m/%Y %H:%M:%S", time.gmtime(self.lockout_release))
+            print ( f"Sorry your account is locked out until {t_release}.\nPlease try again later")
+        else:
+            salt = self.passwordhash[:64]
+            pwdhash = hashlib.pbkdf2_hmac('sha512', 
+                                        provided_password.encode('utf-8'),               
+                                        salt.encode('ascii'), 
+                                        200000)
+            stored_password = self.passwordhash[64:]
+            pwdhash = binascii.hexlify(pwdhash).decode('ascii')
+            f_return = (pwdhash == stored_password)
+            if f_return==True:
+                self.loggedin = 1
+            elif f_return == False:
+                print ( "Sorry that username / password combination wasn't recognised. \nPlease try again")
+                self.attempts += 1
+                if self.attempts >= self.attempt_limit:
+                    # reset attempts
+                    self.attempts = 0
+                    # unlock account
+                    self.locked = 1
+                    # increment the punishment counter
+                    self.lockouts +=1
+                    # set the release time
+                    self.lockout_release = int(time.time()) + (self.lockout_period * self.lockouts)
+                    a_lockout[self.username] = {"r": self.lockout_release, "a": self.lockouts}
+
+        return f_return
+
+    def is_locked_out(self):
+        f_locked=0
+        if self.locked == 1:
+            t_now = time.time()
+            t_lockout = self.lockout_release
+            if t_now < t_lockout:
+                f_locked = 1
+            else:
+                self.locked=0
+                self.lockout_release=0
+        return f_locked
+
+
+def load_file():
+    global a_users
+
+    if os.path.isfile(s_filename):
+        with open(s_filename) as sec_file:
+            a_users=json.load(sec_file)
+        pass
+
+    else:
+        # nothing to do
+        pass
+
+def write_file():
+    with open(s_filename, "w") as sec_file:
+        json.dump(a_users,sec_file)
+    pass
+
+# definitions
+s_filename = "security_checker_users.json"
+a_users =  {} 
+a_lockout = {}
+
+# Load the security file first.
+load_file()
+
+# debug 
+#print (a_users)
+
+while True:
+    print ( "Password Verifier 2000 " )
+    print ( "-----------------------")
+    print ( "1. New User" )
+    print ( "2. Existing User" )
+    print ( "3. Print Users" )
+    print ( "0. Exit" )
+    print ( "-----------------------")
+    print ( "" )
+    i_menu = h.get_int("Please enter your selection",1,3)
+    
+    if i_menu == 0:
+        break
+    elif i_menu == 1:
+        s_usr = input( "Please enter your username [Enter to quit]: ")
+        if s_usr=="":
+            break 
+
+        if s_usr in a_users.keys():
+            print ( f"{s.REDON}Username {s_usr} is already taken.{s.COLOUROFF}")
+            time.sleep(1)
+            break
+
+        usr = User(s_usr)
+        
+        while True: 
+                print ( f"Please enter a password for new user {s_usr}")
+                s_p_1 = input ( "Please enter the new password: ")
+                if s_p_1 == "":
+                    break
+                s_p_2 = input ( "Please re-enter the new password: ")
+
+                if s_p_1 == s_p_2:
+                    if usr.check_password_complexity(s_p_1) == 1:
+                        usr.set_password(s_p_1)
+                        a_users[usr.username] = usr.passwordhash
+                        write_file()
+                        print ( f"{s.GREENON}User {usr.username} added successfully.{s.COLOUROFF} ")
+                        time.sleep (1)
+                        break
+                    else:
+                        print (f"{s.REDON}Password complexity rules not met.{s.COLOUROFF}\nPlease try again")
+                else: 
+                    print (f"{s.REDON}Passwords do not match.{s.COLOUROFF}\nPlease try again")
+    elif i_menu == 2:
+                   
+        s_usr = input( "Please enter your username [Enter to quit]: ")
+        if s_usr=="":
+            break 
+     
+        print ( f"Welcome back {s_usr}.")
+        if s_usr in a_users.keys():
+            usr = User(s_usr)
+
+            if usr.is_locked_out():
+                t_release = time.strftime("%d/%m/%Y %H:%M:%S", time.gmtime(usr.lockout_release))
+                print ( f"{s.REDON}Sorry your account is locked out until {t_release}.{s.COLOUROFF}\nPlease try again later")
+                time.sleep(1)
+                continue
+            else:
+                f_loggedin=0
+                while usr.locked == 0 and usr.loggedin == 0: 
+                    s_pwd_try = input ( f"Please enter password for user {usr.username}: " )
+                    if usr.verify_password(s_pwd_try) == True:
+                        break
+                
+                if usr.loggedin == 1:
+                    print ( f"{s.GREENON}Welcome to the Password Verifier 2000.{s.COLOUROFF}\n{s.ORANGEON}You successfully entered your username and password!{s.COLOUROFF}" )
+                else: 
+                    print ( f"{s.REDON}{s.REVON}Password attempts limit exceeded.{s.REVOFF}{s.COLOUROFF} \nYour account has been locked for 60 seconds." )
+        else:
+            print ( f"{s.REDON}Username not found. Please try again{s.COLOUROFF}" )
+    
+    elif i_menu == 3:
+        print ("System Users")
+        print ("------------")
+
+        for this_user in a_users:
+            usr = User(this_user)
+            if usr.is_locked_out():
+                s_colour = s.REDON
+            else:
+                s_colour = s.GREENON
+
+            print ( f"{s_colour}{usr.username}{s.COLOUROFF}" )
+
+        print ("------------")
+        print ( "" )

Assessment/Wk10/security_checker.py

@@ -0,0 +1 @@
+{"Dave": "319bc54aaa80ec8196f6b21a8477dee75dbd7858d29020b3c5ebb88201799ddf53ff15de17ad0ccff87705bb8890858a7905d510735c5a3e2b2276628847c4ecba3715dccd25531eae9e5203370dca763586cb4ccc326da4683f5b64453692af"}

Assessment/Wk10/security_checker_users.json

@@ -6,7 +6,7 @@ def get_int(input_prompt, min_val=int(1), max_val=int(100)):
 
     try:
         while not ((int_val >= min_val and int_val <= max_val)) :
-            get_val=input(input_prompt + f" (Min: {str(min_val)} Max: {str(max_val)} Exit: 0)")
+            get_val=input(input_prompt + f" (Min: {str(min_val)} Max: {str(max_val)} Exit: 0): ")
             int_val=int(get_val)
 
             ## exit if select 0

Assessment/inc/__pycache__/helpers.cpython-311.pyc

@@ -11,5 +11,7 @@
 BLUEON = "\033[34m" # Blue text.
 REDON= "\033[31m" #	Red text.
 GREENON = "\033[32m" # 	Green text.
+ORANGEON = "\033[38;2;255;165;0m"
+YELLOWON = "\033[38;2;255;255;0m"
 COLOUROFF = "\033[0m"	#Reset special formatting (such as colour).
 #print ( UP, end=CLEAR)