diff options
| -rw-r--r-- | backend/main.py | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/backend/main.py b/backend/main.py index e3dbc87..d77fdd1 100644 --- a/backend/main.py +++ b/backend/main.py @@ -187,7 +187,7 @@ def restart_terminated_schedules(): def reminder_timer_finished(timer_id): print("timer almost finished", timer_id) - cursor.execute("SELECT * FROM timers WHERE timer_id = ?", timer_id) + cursor.execute("SELECT * FROM timers WHERE timer_id = ?", (timer_id,)) out = cursor.fetchall() scheduler.add_job(final_timer_finished, 'date', run_date=out[0][RowIndices.END_TIME], id=str(timer_id), args=[timer_id]) @@ -206,7 +206,7 @@ def reminder_timer_finished(timer_id): def final_timer_finished(timer_id): print("timer finished!1", timer_id) - cursor.execute("SELECT * FROM timers WHERE timer_id = ?", timer_id) + cursor.execute("SELECT * FROM timers WHERE timer_id = ?", (timer_id,)) out = cursor.fetchall() notification = Notification(app_id=ONESIGNAL_APP_ID, @@ -291,7 +291,7 @@ def start_new_timer(data: RequestData, response: fastapi.Response, session_key: INSERT INTO timers (user_id, start_time, end_time, block, machine, status, subscription_id) VALUES (?, ?, ?, ?, ?, ?, ?)""", (session_key, now.isoformat(), end_date.isoformat(), block, machine, 'RUNNING', data.onesignal_subscription_id,)) conn.commit() - cursor.execute(f"SELECT * FROM timers WHERE end_time = '{end_date.isoformat()}';") + cursor.execute("SELECT * FROM timers WHERE end_time = ?;", (end_date.isoformat(),)) out = cursor.fetchall() for row in out: @@ -332,7 +332,7 @@ def check_status(response: fastapi.Response, session_key: Annotated[str | None, print("no session key, creating.") session_key = create_session(response) - cursor.execute("SELECT * FROM timers WHERE user_id = ?", session_key) + cursor.execute("SELECT * FROM timers WHERE user_id = ?", (session_key,)) out = cursor.fetchall() for row in out: @@ -361,7 +361,7 @@ def get_laundry_info(response: fastapi.Response, session_key: Annotated[str | No if session_key: result = [] - cursor.execute(f"SELECT * FROM timers WHERE user_id = '{session_key}'") + cursor.execute("SELECT * FROM timers WHERE user_id = ?", (session_key,)) out = cursor.fetchall() for row in out: @@ -390,7 +390,7 @@ def get_laundry_info(response: fastapi.Response, session_key: Annotated[str | No @app.post("/finish", response_class=PlainTextResponse) def finish_laundry(data: FinishRequestData, response: fastapi.Response, session_key: Annotated[str | None, fastapi.Cookie()] = None): if session_key: - cursor.execute(f"SELECT * FROM timers WHERE timer_id = '{data.id}'") + cursor.execute("SELECT * FROM timers WHERE timer_id = ?", (data.id,)) row = cursor.fetchall()[0] if datetime.datetime.now() < datetime.datetime.fromisoformat(row[RowIndices.END_TIME]): @@ -401,7 +401,7 @@ def finish_laundry(data: FinishRequestData, response: fastapi.Response, session_ machine_times[row[RowIndices.BLOCK] - 1][row[RowIndices.MACHINE] - 1] = None machine_endings[row[RowIndices.BLOCK] - 1][row[RowIndices.MACHINE] - 1] = None - cursor.execute(f"DELETE FROM timers WHERE timer_id = {row[0]}") + cursor.execute("DELETE FROM timers WHERE timer_id = ?", (row[0],)) conn.commit() print(f"timer of id {data.id} has been finished by {session_key}") |