def index(self, name=None, password = None, referer=None):
if name: # submitting
user = User.query.filter_by(username = name).first()
if user and user.password == userinfo.md5pass(password, user.password):
if user.auth == 1:
userinfo.set_login_sesion_info(user)
if referer:
controller.http_redirect(referer)
else:
controller.http_redirect(controller.base_url()+'/welcome/')
else:
return template.render("login.html"
, error_reason = "auth"
, referer = referer
)
else:
return template.render("login.html"
, error_reason = "failed"
, referer = referer
)
else:
referer = controller.get_header('Referer')
if not referer:
referer = controller.base_url()+"/welcome/"
return template.render("login.html"
, hide_login_register = True
, referer = referer
, error_reason = None)
def index(self, user = None, key = None):
if not user or not key:
return "Direct access is not allowed"
user = User.query.filter_by(username = user, authkey = key).first()
if user:
user.auth = 1
user.authkey = None
userinfo.set_login_sesion_info(user)
controller.http_redirect(controller.base_url()+ "/welcome/")
return "Auth key or user are no longer valid!"
