def post(self, req):
user = users_c.find_email(req.form.data['email'])
if user is None or not user.check_password(req.form.data['password']):
raise BadRequest({'error': 'user-auth'})
resp = Redirect(router['home'].url(req))
UserState.login(resp, user)
raise resp
def post(self, req, user):
user.set_password(req.form.data['password'])
users_c.update_password(user)
resp = Redirect(router['home'].url(req))
UserState.login(resp, user)
raise resp
def delete(self, req):
resp = Redirect(req.referer or router['index'].url(req))
UserState.logout(req, resp)
raise resp
