Beispiel #1
0
def logout(request):
    """simply logout the current user"""
    response = HttpResponse(mimetype='application/json')

    if request.user.is_authenticated():
        username = request.user.username
        auth.logout(request)
        message = JSONResponse(success=True, message="Logout successful")
        response.write(message.json())
        logger.info("User %s logged out" % username)

    else:
        message = JSONResponse(success=False, message="You must login before you logout")
        response.write(message.json())
        logger.error("User tried to logout but wasn't logged in.")

    return response
Beispiel #2
0
def login(request):
    """Allow a user to login

    Used HTTP POST variables:
    username     - the username
    password     - the password
    """
    response = HttpResponse(mimetype='application/json')
    auth.logout(request);

    if 'username' not in request.POST or 'password' not in request.POST:
        message = JSONResponse(success=False, message="Missing POST parameter!")
        response.write(message.json())
        logger.error("Invalid login: Username or password not set.")
        return response

    user = auth.authenticate(username=request.POST['username'], password=request.POST['password'])

    if user is None:
        message = JSONResponse(success=False, message="Login failed!")
        response.write(message.json());
        logger.warning("User %s tried to login, but login failed (wrong password or account does not exists)" % request.POST['username'])
        return response

    else:
        if user.is_active:
            auth.login(request, user)
            message = JSONResponse(success=True, message="Login successful")
            response.write(message.json())
            logger.info("Login successful for user %s" % user)
            return response

        else:
            message = JSONResponse(success=False, message="User not active! Activate your account first")
            response.write(message.json())
            logger.warning("User %s tried to login, but is not activated yet!" % user)
            return response