From 19ee88825a591e4b74f3bd25360aac9e4bee520f Mon Sep 17 00:00:00 2001
From: yamat0jp <yamat0jp@yahoo.co.jp>
Date: Wed, 16 Nov 2016 21:56:47 +0900
Subject: [PATCH] 	new file:   __pycache__/index.cpython-35.pyc 	new
 file:   index.py 	modified:   pybbs/modules/admin.htm 	modified:  
 static/db/db.json

---
 __pycache__/index.cpython-35.pyc | Bin 0 -> 10527 bytes
 index.py                         | 236 +++++++++++++++++++++++++++++++++++++++
 pybbs/modules/admin.htm          |   2 +-
 static/db/db.json                |   2 +-
 4 files changed, 238 insertions(+), 2 deletions(-)
 create mode 100644 __pycache__/index.cpython-35.pyc
 create mode 100755 index.py

diff --git a/__pycache__/index.cpython-35.pyc b/__pycache__/index.cpython-35.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..a5a2304e3952f53d2903760fd45ba7d155f283fd
GIT binary patch
literal 10527
zcmbtaU2GiJb-uIz++F^QTv4KAOSWpSZIN_RJ9Z;Gv@J`vo6xZ(N9i=`V!1n{mfSzy
znYE}5`9M)^(%MGQ22O%HXwt$kTqkOSJ`^ZYGzHqnzV&U;w}oB%wLl-@r+(kLGs{_O
ztvKj%XL#rSoVh>eeCNC8?(FDjcKz{3zPW#&Qau&<B#>Ul<(`fyRmIm*b){@8OvjWR
z57P-{C&P3qQYRfrXCmp5NIDxy=fZSM)w8ORS9V@CMwLCPEcPI->SL-guIzEum{9hF
zYD_A7(v&4seM&W^l|5~qld671HI69zh_WtLQ>vO)w;&>|97}D?sEt{*A6IrkU94tQ
zbwtWWlv9x0qsYywYEE)<VeTAq^Qt;3xuaq3G31V^>bT^N4@y6dvI$k4l(NaevU!wE
zsp_<pO^4D>Aoqx>&PeV|n0perv#MH<+`^!odr)>%Rp+E^Zm{fLlpRym<5G4!EITD*
zJdLt>RXrhPC&IG(r0jm>oKe-2YBQ$v$rvYWRBil@+E>cr!vkvLLFL@f=Y31rMXJW7
z;ys^Gc~*)sKUH<sYE8#ax7uE<)pUz-KXtj*ym9_nKlw_>(Kr0$^=poHiWaNZ9gnF@
zwd^@wt>IKCCj3D4j1vAX5>BXoc8ssA#@Kf%A-)MoCsY-Bn36OSX>=>&=bkOQ&I{#c
zweIMO6-cIFUeDoj@4;<HsSQzb3~AR=9>y6{8*#N`agdjau@ygCt~P4TQpa_4F=0=x
zJ6_3kDjn^VDy`OL4FmRCx>>Ha{FLKX%5BF_biB1EFe3@qsjuM)E&o>O3B2yprxsts
zle@Uq*>oCZx9nc4EuL>xIt{1kxr^6Zded!}E6!s3#_Fnjw*1AVrN_!ki?wFe*<NVh
z@F)0oyj!EX^k|v`N#LfeajQEY8S}#7sud2LAO4Tyl1Vs%M1K-E>X;Z3N3OFdD_ZuX
zdw9sjm>xr!pW)D&<%T1JGq*_=Ot49`p9SQ)(t$(0JY2EAR9v$DQc-BXmsl9$LbQwd
zO5G{zU_pwO^zLw<rh+<=**g~L)ye4G-C1>|nDR5F5(ir<`Povb(W-XpOy^6btxmaa
zO7s*&YEG)2;f;$Pxp5qN1UFW5Q@G`=d?Fv0ya5y70xh!=we(ICfb!ph5sC?1DklB>
zi&T+7-F<7R!uI@d4fD8UvHu#AYNl~R6x~C6QFIs;te!Ri)fdy6gKZHAR-{2_VJu6j
zIhdFjNX!bPB?E&2s<P2vNh6@|h&;X#d1=s6S<UHCvS2PScHgorzF<_%?IxrU7(FJv
zf_yR5jS;?R2VIS+-Bg%~v4moGk-&S$)zO`VI<lKlJCHG<HZkodEHA5e(v*j?qld~+
zi8*Ptkt4#P8NUft_~RJ5Got!!f$J2#nN(WK@G&=n=zQ-HwKGB-=P-gUCBjO8at!%U
zr7^W5h$YjRG-_Q~@spb{dDl-=TFo^-OK@<S<z~gX+#Nf3Sh(gj{G?a&>W&|)u3m7H
zSZ4vNZdN<%HP@3GX$V1cuX7y59bND3z4`HbZ}j%w?d`qMyZL9my?^QLz0<q-eLq=g
zb()?gq<li_)4Y8`1?o;1Z6|Kk>moJNZn-t$yr0%irKQ<hV0pPa8CEr*g+3PZey-eZ
z*K3tB8)#~@9|t^X8i1bym{lF^XDh9G-KnsOosVJ%##mm(7_)+C26GeZc)uU7J54`c
zuGfoM14yarD(%ouw9D&`pK6zNx#9X&&5t$9ejH8o!+d4Z^~&1w<LLQe<9rb1Cvmw<
zDC?9pVV$s!0$gWf(^eM$XYe;><&mGaQr0nR);eQ#C!*#@<XtHy^ehBu0-rw08wEz*
zCdeRoFo%K@xC9^bmgaK>SN}s8T*f7Rx)TeAy2DGrtNd46>$T=#ANaX|wL4O0TP`)=
zw1}4vM^zcs<LnzdsW21KcXB5BfKEi>^&Bp@h1+jHBA6*`9@Z5XlZEGxt2v^}MJa&U
zBv=rdS5kl?CS@=(fJ00bV1xzM5qFVU(KG=)kDH%qmt7bBwrVHEWT=Kz<4>){?#QBK
zEiNq<)A|86p~{*C6qU_W6U%yC+_s>-pV3aW1`%E{Zd5VWzOI+p?7#(xYfL~3y(dxN
z(z2*wbJi%G_vFCLvDQj4IaG<hGAQ;ylb%4qW4MG7z_Y|PbB5~@XW=fobg7u|N718J
z$GfWnaYoHT?qe`aVWGsQgg&~PS`=LZX%LtA6k6OxnVvy$z-Y2&QVzQC+gjE#Wbq0u
zi|OIBLF2s3Y(Uj$W#R^DS-F++>$PF?l7Jjha2m9k7sFZ2%wUe_<wPChD_t<hHciY1
z&;!I`VrYJX5O$Xtx&YCkxs69UGGJ{q$2cwy*Zl%++Ybl*F|HpyIe)c4&I{LrE^fvZ
zkRR!9SX<NTiu4fVH&X(uFL&xx>%JxUDFI|Rq=DA<Atl$(;)O5r%`_JU4bKA^qFv<>
zKTEyYI3n;sy{Q_{<2q1p=5U1l4~M;s%bmyVE(<E^{i-<0a2eT@A6jXjF<nKjSw>8o
zIBA(IppcnPY)SBiw<i{1VPziz)BzD%PpDm#fe#45S&s|3f`Onm$&Lz0jxZiR8j^!Y
z!+C_pfX^6a0!jlGvRx&EASg~!!uhM0)NWR7KSHoOfAxN~n^QaZX4Pg&>Gy?<OsN90
z3g8|E2-tdGT>;4fQ7NESfpjUOJiIwed0zqr+ImM_**-%CbN=dyP+(dF{yJbc6!i72
zUqg}^4K~&2exAGt-6TYR*}}G!<HLNIoUd8fuX2cnkD<<*MXod_-D=KC!7;U&P<lrS
zj!Qu>_ZV|Pr_}DK^mml+B(sC0pIg||?vAPEqT0ch6$66c6Rg0INljE^AIH_sIE&`c
zpnw+af$86c7_xV;r8mPEm9C=#<_dj70N|uTn_5ckPRL6@B_}9SATOt?_i*&wJh8{9
zelNA9P(5Y*Pe67<ZNY2%FmQV1LX@uQd!c?E5(Y!nKD_;-4}biAZ|{eFp4LsCtJj*F
z-Sj!PqHArhn>y!uH|kC|ajw=_@6h6Ud%pm=ljKLYf7#o+9pv8Z?fp`0Q<LKOV1^CS
zN#9Vt%N=g&dN+U7yZMVx_TK*Rdv7f~_^DOw#?Q5%?$8SV`@Ox7ZvRbh|L=SI|J>XE
z(*;d8)}gI@`~hFs+j|>4vO@wXQr_+Df48^)v)<kZ=>I~8yyl}H|NNsLd<PV?w|6s2
zJ{M{q1Fbsuv&s*?^Wp6ue)KjZzWL}QOG`_=n}5;U`+jflyD|lsh@ULz)2QgDnw`cf
zm?Md&BfM3A8TsAJePDMr?BR-|2DBbRu3)P^$97p4WYohXI<8(|k+^p<!-$Vh)tcDc
zdZ^5;tgucku4~flE|(}NNd^HP3KyjrtMKD)XVs2lUj2mUY<v2PQp?f0g>LeVeu7Q(
z)5y2eK{vrpTYjSEISo?M^$7L}Kcu^V8JGKY+!V;@v^537VE$4dp(&8iQ9$f0i0KhY
zWvwL2Nl?wj(kzJUlr<7NCG_<n)SIx5#=27jD7avF#~tMLGbsn1(F!|9_yl?7^8g~#
zBQE1|IloavcH#uG4Il&zSwQrb@CF;em%#2Go7!g>c?s}YbF*H7lE^26dmp6#2M>W4
z0~(wR{VrrmJcB+?cnLx~0fff|H(r!{0dE7`G|Hf=^vu*Yd*Y20_k{swW5<aKY2^XU
zWJhT>zJwSc4u&)Whye<tJMS{0h`nkP!$Psyw4!}<Ckt!~{Q`Es#2g@xfGPKj031l1
zfJAIPIYq%facV`sfRXFp!)*wL{D$q`0T<TfDwn(Cm1|CA)2Tic{6E;q2^%I)(X>x}
z1~)$``%pmuF(2%}Xj_Nv?ZC1YSt@%VB9uOhTQPHBO8QaeiVc2=DH}KJNZBP#N_*HS
zC<&9MTtcOa<)PX%j2S38_iQ7v6w=*^s0JDKm_AIYb7=3!uRE*$Xu0EE10Hgt>Qqf<
zg?${{#326wExwH_;2|THX3l`tQ%{#!h5fvX*55M0RIG9wDxdI8ho8f?Kcpq0#-|}D
ziR(E^9m6ILE*}a-75kB>55kyYMQ}o}ALgHBTol?%)q~?gXa`y*(Qv$t5fnIRXqhpF
zbt#1@LZyYX&=|J<S8^pJO4b2xA?yXsYB73Os4J8n>PiO-@7KI4{W3l^+8BB-)(!jE
zelqNcM9I<Y{M9pJ8A-7zNS&fo7#GwZ3Cf12-TDv1IM6#`ss*wb7E~DwoLK?*BBnsa
z5xekXt>)zm3<bFEogS7hp|}6%y_^5k_h;}kAHRS5!@v7W@wV^v_P*EK`zd|e-Yqc^
zqwF**vxST!imk8kk<g@H;!XTdWd9gg1vk)9{@iJc%MweV&U5$KXua<E@fsp9;%3qZ
zw&5q%I?ak1*=v*}X7W5!hcuHg{T42lJ)%_{6-$_cRm{d7#eD``{64EYBX$u{vjF#p
z8i)QCWa+ECeWn}uBb2_0D|7>V9xw>Hhh<in$1Q3Q&|&B;?7)QdX#_dO$V2^SLw>0L
zv<1=scaZP|0Q%caC<5p<HCzPp(I|YVyn+5DsJ8n+asV|j9C|5Q2Wv8FMuY}={u2q+
zA@&D_r!C<bwV{!NwZ&aPA?3v2Kp7J&Mjc3yL?-}`7_^FD<N-3$stwqP3PGFIohlFq
z*RkW!Wm$YXzI9!LcC2m;(}15sf=kU%SZ_wGMxY0?`0GwYX7;ys_3IG$6N=`Nz}544
z_!^T6-DQmdPh4-{2~7RavCZfu1oA7_4zE5}K7&hEe-DWO$^=u8E*T#$7>K23j!_1{
zl~Dts0<v7<+PUxskW4-JT<H(xVwIsZ;OGL*P*7$<tAZwR12}1fY02dt^;2uLItZwr
za;5LxsW1d;p2c&XL7xX4B@G!-qjI&@T5WA3&W`d2!b--%i5h;Yaifk<uBQJCVoN5j
zBp@)v{(pvwL2PLXUXebrJ2fz?vhtPCum+}<kphmke<l_&DNJMy`EVNWFt8p@UoaP`
z72QC~&mQ?EO3m<N`Vpo%wt?XYupJr>o##K`3gSTwk_`@o@x|ykIF<?<prdMgm3=&a
z)eeC{21R3D4xHy4H}x2;_!poM%gQW65Coh|-0847QYLjwpakarEM9mSp-CB46aN6(
zh=6MjD;y_@jXh$NVo2zjG0}g-<&xMc2@1|znb^G5Ju*0IqY*ffI!t8*o;hinvLetR
z^D5j0E2}=h6&^mN^9jv7&RYM&DP6|(dB8e<q1A%&e@%|VDv3Y_|M%^cP}f%~Ofy!6
zMkzc6@Cq#g+g~|Qo;8t3v+<L1ir~kw8J7LiCe9;A&4ED)Mp0|7BhWqu`37%Yrr;Q&
zW0zr5-ToDqV3)GG)6rfp7=c4#_G~tE8n;mJt56=Wkk7-X@c)5@`DYGJP2377pM0p}
z16v=A7Z??wo;W`*rq)Dxalpp}d|pBlNjg8~q{0ODFe%AF)FdqloONX+k!2i(m2*7(
zLSjA3cp)MrUXC#i{5&8?j45xN9UvP-eLQ|v1yn-?;eFnOs-cOTota-h@YfE&7*JJk
z%Sp8{r8cJ32F}!=J}}gndMiAfF06DXafSn?zF1wwcVWZD!IF@#AllqbGwO_ed3R#*
z!9OgY?LKqXUOM|^>FUG9?y<u;ct#nD7Q6S}Q6{^e&s76&5gAACkim0uu*GiSjuL|g
zLki3Zo;`}FK)a6pNU2@+uGvZXVSt@8gEx68^I&H?wcu3RwNpmF?NJlC;4c=m<8>cd
zwO^`y!M(Ej%2$8C<vxCK^M&T(H=cd6_08+Acu!n<`PG*<Uw!?h#}>C=dg96FpR)7Y
zu3igbAMRz_90`?Rip3dC12=IK#$e@~0kDb`qdc-7(&T_b5(Ho*G5}7Fb3%^9Pi(Ym
zI6TCmiJaKsY#m+{=jmcfI>)x(!p+Y`jDRQbwPwvLl>$ihGuO;7JX}8m^6vo;+=#u3
z=|g+ezvFUw9><?aoVAXF51qmvgCnU}J_bG<v9yKoB^8<)KV)be@N>9aVvIpEcn?^b
zu|4BGU;|*CusSF!)BO#WMeYpcMox1{c3n7v=3XkP=8nKP1A&28Wm_IFw}K|1o;Y=g
z9AC-NtUisN=u^1C6A)t~+iS2dWnx>T2{=a*j9g;wqrB1258YRDU;dxCTsBbFNz73m
z{P7{oRCjV<mUsethx3&gqVVW(!#>X%X2lB&_|we-0`U8qtqB}8#MGrKcX08Q%NKB@
zAR{>s5uw|pYt_&5CT{G&mpz2M|H9?c(<t!UJltisFwo0`L**g<lByw*2u)ED@dxkd
zpy1zdh5m9pKcbmORcw^;yP#6>Av+)Z0%+m7yIvFBwPz&htSz`T*slWv)UP|*P6yfe
zm6W?cJJ7E~*nt2>AndVFocTSGJrzD*^SpK-s9&ens<&EgdpxWY{QAnyg&Bx!XgYKq
z=bKWnksH-jW53jEIfS<-P4+^o?PxircXgVDoLR9$d+b$btK+!gX`uXK#TYx!81*u5
z0tJi!4g&x?^V*AsB^VR`HtTUJg~ixYIIMU1o2o_wCS3|*rI=4UcjeN>7oVw?+n^bC
zh7(vSx7)*3%g>xM)ca`;*yXu2)pzi3)|y9vXd*G6n>{+4n@!G-%%7c|oSmM}&Ckpy
K=I_medHo+(bX8yg

literal 0
HcmV?d00001

diff --git a/index.py b/index.py
new file mode 100755
index 0000000..a47ff91
--- /dev/null
+++ b/index.py
@@ -0,0 +1,236 @@
+
+import tornado.wsgi
+import wsgiref.simple_server
+import os.path
+import tornado.auth
+import tornado.escape
+import tornado.httpserver
+import tornado.ioloop
+import tornado.options
+import tornado.web
+from tornado.options import define,options
+from tinydb import TinyDB,Query,where
+from tinydb.operations import delete
+from datetime import datetime
+
+define('port',default=8000,help='run on the given port.',type=int)
+
+class BaseHandler(tornado.web.RequestHandler):
+    def get_current_user(self):
+        user = self.get_secure_cookie('admin_user')
+        return tornado.escape.utf8(user)
+    
+    def set_current_user(self,username):
+        self.set_secure_cookie('admin_user',username)
+        
+    def clear_current_user(self):
+        self.clear_cookie('admin_user')
+
+class IndexHandler(BaseHandler):
+    def get(self,dbname,page='0'):
+        params = self.application.db.get(where('kinds') == 'conf')
+        if params['mentenance'] == True:
+            self.render('mentenance.htm',title=params['title'],db=dbname)
+        if self.application.collection(dbname) == False:
+            if self.current_user == b'admin':
+                self.application.db.table(dbname)
+            else:
+                self.render('regist.htm',content='urlが見つかりません')
+        i = params['count']      
+        na = self.get_cookie('username')
+        pos = self.application.gpos(dbname,page)
+        table = self.application.db.table(dbname)
+        start = (pos-1)*i
+        if start < 0:
+            start = len(table)-i
+            if start < 0:
+                start = 0
+        rec = table.all()[start:start+i]
+        if len(table) >= 10*i:
+            self.render('modules/full.htm',position=pos,records=rec,data=params,db=dbname)  
+        self.render('modules/index.htm',position=pos,records=rec,data=params,username=na,db=dbname)
+        
+class LoginHandler(BaseHandler):
+    def get(self):
+        self.render('login.htm')
+        
+    def post(self):
+        pw = self.application.db.get(where('kinds') == 'conf')
+        if self.get_argument('password') == pw['password']:
+            self.set_current_user('admin')
+        dbname = self.get_argument('record')
+        self.redirect('/'+dbname+'/admin/0/')
+        
+class LogoutHandler(BaseHandler):
+    def get(self):
+        self.clear_current_user()
+        self.redirect('/login')
+        
+class NaviHandler(tornado.web.RequestHandler):
+    def get(self):
+        self.render('top.htm',coll=self.name())
+        
+    def name(self):
+        y = []
+        for x in self.application.db.tables():
+            if x != '_default':
+                y.append(x)
+        return sorted(y)
+
+class RegistHandler(tornado.web.RequestHandler):
+    def post(self,dbname):
+        if self.application.collection(dbname) == False:
+            self.render('regist.htm',content='urlが存在しません')
+        words = ['<link','<script','<style','<img']
+        out = ['ばか','死ね','あほ']
+        na = self.get_argument('name')
+        sub = self.get_argument('title')
+        com = self.get_argument('comment')
+        text = ''
+        i = 0
+        error = ''
+        for line in com.splitlines(True):
+            for word in words:
+                if word in line:
+                    error = error + u'タグ違反.('+word+')'       
+            text = text+'<p>'+line
+            i += len(line)
+        for word in out:
+            if word in text:
+                error = error + u'禁止ワード.'
+                break
+        pw = self.get_argument('password')
+        if na == '':
+            na = u'誰かさん'
+        if sub == '':
+            sub = u'タイトルなし.'
+        if i == 0:
+            error = error + u'本文がありません.'
+        elif i > 1000:
+            error = error +u'文字数が1,000をこえました.'
+        article = self.application.db.table(dbname)
+        if len(article) == 0:
+            no = 1
+        else:
+            item = article.get(where('number') == len(article))
+            no = item['number']+1
+        if error == '':
+            reg = {'number':no,'name':na,'title':sub,'comment':text,'password':pw,'date':1}#datetime.today()}
+            article.insert(reg)
+            self.set_cookie('username',na)
+            self.redirect('/'+dbname+'#article')
+        else:
+            self.render('regist.htm',content=error)
+
+class AdminHandler(BaseHandler):
+    @tornado.web.authenticated               
+    def get(self,dbname,page='0'):
+        if dbname == '':
+            dbname = self.get_argument('record','')
+        if self.application.collection(dbname) == False:
+            self.render('regist.htm',content='urlが見つかりません')
+        table = self.application.db.table(dbname) 
+        rec = table.all()                   
+        mente = self.application.db.get(where('kinds') == 'conf')
+        if mente['mentenance'] == True:
+            check = 'checked=checked'
+        else:
+            check = ''
+        pos = self.application.gpos(dbname,page)
+        self.render('modules/admin.htm',position=pos,records=rec,mente=check,password=mente['password'],db=dbname)
+
+class AdminConfHandler(BaseHandler):
+    @tornado.web.authenticated
+    def post(self,dbname,func):
+        if func == 'set':
+            if self.get_argument('mente','') == 'on':
+                mente = True
+            else:
+                mente = False  
+            word = self.get_argument('pass','')
+            if word == '':
+                self.render('regist.htm',content='パスワードを設定してください')
+            else:
+                self.application.db.update({'mentenance':mente,'password':word},where('kinds') == 'conf')     
+        elif func == 'del':
+            table = self.application.db.table(dbname)
+            for x in self.get_arguments('item'):
+                table.remove(where('number') == int(x))
+        self.redirect('/'+dbname+'/admin/0/')
+          
+class UserHandler(tornado.web.RequestHandler):
+    def post(self,dbname):
+        num = int(self.get_argument('number'))
+        pas = self.get_argument('password')
+        table = self.application.db.table(dbname)
+        qwr = Query()
+        obj = table.get(qwr.number == num)
+        if obj and(obj['password'] == pas):
+            table.remove(qwr.number == num)
+        self.redirect('/'+dbname)
+      
+class SearchHandler(tornado.web.RequestHandler):       
+    def post(self,dbname):
+        self.word = self.get_argument('word1')
+        self.radiobox = self.get_argument('filter')
+        self.set_cookie('search',self.word)
+        table = self.application.db.table(dbname)
+        self.render('modules/search.htm',records=self.mylist(table.all()),word1=self.word,db=dbname)
+    
+    def get(self,dbname):
+        word = self.get_cookie('search')
+        self.render('modules/search.htm',records={},word1=word,db=dbname)
+        
+    def mylist(self,rec):
+        for searchrec in rec:       
+            if self.radiobox == 'name':
+                if searchrec['name'].find(self.word) == True:
+                    yield searchrec
+            else:
+                if searchrec['comment'].find(self.word) == True:
+                    yield searchrec
+        
+class FooterModule(tornado.web.UIModule):
+    def render(self,number,url,link):
+        return self.render_string('modules/footer.htm',index=number,url=url,link=link)
+    
+class Application(tornado.web.Application):    
+    def __init__(self):
+        self.db = TinyDB('static/db/db.json')
+        handlers = [(r'/',NaviHandler),(r'/login',LoginHandler),(r'/logout',LogoutHandler),(r'/([a-zA-Z0-9_]+)',IndexHandler),(r'/([a-zA-Z0-9_]+)/([0-9]+)/',IndexHandler),
+                    (r'/([a-zA-Z0-9_]+)/admin/([0-9]+)/',AdminHandler),(r'/([a-zA-Z0-9_]+)/admin/([a-z]+)/',AdminConfHandler),(r'/([a-zA-Z0-9_]+)/userdel',UserHandler),
+                    (r'/([a-zA-Z0-9_]+)/search',SearchHandler),(r'/([a-zA-Z0-9_]+)/regist',RegistHandler)]
+        settings = {'template_path':os.path.join(os.path.dirname(__file__),'pybbs'),
+                        'static_path':os.path.join(os.path.dirname(__file__),'static'),
+                        'ui_modules':{'Footer':FooterModule},
+                        'cookie_secret':'bZJc2sWbQLKos6GkHn/VB9oXwQt8SOROkRvJ5/xJ89E=',
+                        'xsrf_cookies':True,
+                        'debug':True,
+                        'login_url':'/login'
+                        }
+        tornado.web.Application.__init__(self,handlers,**settings)
+ 
+    def gpos(self,dbname,page):
+        params = self.db.get(where('kinds') == 'conf')
+        pos = int(page)
+        if pos <= 0:
+            pos = 0
+        elif (pos-1)*params['count'] >= len(self.db.table(dbname)):
+            pos = 0
+        return pos
+    
+    def collection(self,name):
+        for x in self.db.tables():
+            if x == name:
+                return True
+        else:
+            return False
+        
+if __name__ == '__main__':
+    tornado.options.parse_command_line()
+    app = Application()
+    app.listen(options.port)
+    tornado.ioloop.IOLoop.instance().start()
+#    wsgi_app = tornado.wsgi.WSGIAdapter(Applications())
+ #   server = wsgiref.simple_server.make_server('',8888,wsgi_app)
+ #   server.serve_forever()
diff --git a/pybbs/modules/admin.htm b/pybbs/modules/admin.htm
index a8b1ea4..2bedfbc 100755
--- a/pybbs/modules/admin.htm
+++ b/pybbs/modules/admin.htm
@@ -37,7 +37,7 @@
 </th></tr>
     {% for record in records %}
     <tr>
-	<th><input type=checkbox name=item value="{{record['number']}}"></th>
+	<th><input type=checkbox name=item value={{record['number']}}></th>
 	<th>{{record['number']}}</th>
 	<th style=size:-1>{{record['date']}}</th>
 	<th style=size:-1;color:#D01166;bold>{{record['title']}}</th>
diff --git a/static/db/db.json b/static/db/db.json
index 39269c2..cee5356 100644
--- a/static/db/db.json
+++ b/static/db/db.json
@@ -1 +1 @@
-{"bbs2": {}, "_default": {"5": {"title": "pybbs", "mentenance": false, "kinds": "conf", "password": "admin", "count": 30, "title2": "pybbs"}}, "bbs1": {"11": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>wee", "number": 10}, "12": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>fe", "number": 11}, "13": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>fe", "number": 12}, "14": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>off", "number": 13}, "15": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>fed", "number": 14}, "16": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>ef", "number": 15}, "17": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>efe", "number": 16}, "18": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>ef", "number": 17}, "19": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effete", "number": 18}, "20": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>efef", "number": 19}, "21": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>off", "number": 20}, "22": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>ef", "number": 21}, "23": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>efef", "number": 22}, "24": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effe", "number": 23}, "25": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>efe", "number": 24}, "26": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effete", "number": 25}, "27": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effete", "number": 26}, "28": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>efefefeef", "number": 27}, "29": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effe", "number": 28}, "30": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>effe", "number": 29}, "31": {"title": "\u30bf\u30a4\u30c8\u30eb\u306a\u3057.", "password": "", "name": "None", "date": 1, "comment": "<p>ef", "number": 30}, "32": {"title": "bbs", "password": "KAINUSHI", "name": "None", "date": 1, "comment": "<p>fef", "number": 23}}, "bbs3": {}}
\ No newline at end of file
+{"bbs2": {}, "bbs3": {}, "bbs": {}, "bbs1": {}, "_default": {"5": {"title2": "pybbs", "mentenance": false, "count": 30, "title": "pybbs", "password": "admin", "kinds": "conf"}}}
\ No newline at end of file
-- 
2.11.0