def login():
if request.method == "GET":
next_redirect = request.args.get("next", False)
return render_template("public/login.html",
next=next_redirect)
else:
errs = []
password = request.form.get("password", "")
email = request.form.get("email", "")
next = request.form.get("next", "")
try:
bc = Bcrypt(None)
conn = db.get_db()
sql_query = "SELECT * FROM users WHERE email = %s;"
sql_data = (escape(email), )
cur = conn.cursor(cursor_factory=psycopg2.extras.RealDictCursor)
cur.execute( sql_query, sql_data )
user = cur.fetchone()
cur.close()
if user == None:
errs.append("No User Found.")
else:
if bc.check_password_hash(user["password"], password):
# add user to the session
tools.setCookie( email, user["username"], user["userid"] )
# return the errors and redirect path
redirect_url = "/welcome/"
if next:
redirect_url = next
return redirect("/welcome/")
else:
print "bad pass"
errs.append("Incorrect Password.")
except Exception, e:
print e
errs.append("Unable to sign in at this time.")
return render_template("public/login.html",
next=next,
errors=errs,
email=email)
def login():
if request.method == "GET":
next_redirect = request.args.get("next", False)
return render_template("public/login.html", next=next_redirect)
else:
errs = []
password = request.form.get("password", "")
email = request.form.get("email", "")
next = request.form.get("next", "")
try:
bc = Bcrypt(None)
conn = db.get_db()
sql_query = "SELECT * FROM users WHERE email = %s;"
sql_data = (escape(email), )
cur = conn.cursor(cursor_factory=psycopg2.extras.RealDictCursor)
cur.execute(sql_query, sql_data)
user = cur.fetchone()
cur.close()
if user == None:
errs.append("No User Found.")
else:
if bc.check_password_hash(user["password"], password):
# add user to the session
tools.setCookie(email, user["username"], user["userid"])
# return the errors and redirect path
redirect_url = "/welcome/"
if next:
redirect_url = next
return redirect("/welcome/")
else:
print "bad pass"
errs.append("Incorrect Password.")
except Exception, e:
print e
errs.append("Unable to sign in at this time.")
return render_template("public/login.html",
next=next,
errors=errs,
email=email)
def signup():
if request.method == "POST":
email = request.form.get("email", "")
username = request.form.get("username", "")
password = request.form.get("password", "")
try:
bc = Bcrypt(None)
hashed_pw = bc.generate_password_hash( password )
# Open a cursor to perform database operations
conn = db.get_db()
cur = conn.cursor()
sql_query = "SELECT * FROM users WHERE email = %s;"
sql_data = ( email, )
cur.execute( sql_query, sql_data )
old_email = cur.fetchone()
if old_email:
errs.append("Email already exists.")
else:
sql_query = "INSERT INTO users (email, password, username) VALUES (%s, %s, %s) RETURNING userid;"
sql_data = ( email, hashed_pw, username )
cur.execute( sql_query, sql_data )
userid = cur.fetchone()[0]
# sql_query = "INSERT INTO email_confirmation (userid, token) VALUES (%s, %s);"
# sql_data = (userid, token)
# cur.execute( sql_query, sql_data )
conn.commit()
cur.close()
tools.setCookie( email, username, userid )
except db.psycopg2.DatabaseError, e:
# if I have a connection
print e
if conn:
conn.rollback()
return redirect("/welcome/")
def signup():
if request.method == "POST":
email = request.form.get("email", "")
username = request.form.get("username", "")
password = request.form.get("password", "")
try:
bc = Bcrypt(None)
hashed_pw = bc.generate_password_hash(password)
# Open a cursor to perform database operations
conn = db.get_db()
cur = conn.cursor()
sql_query = "SELECT * FROM users WHERE email = %s;"
sql_data = (email, )
cur.execute(sql_query, sql_data)
old_email = cur.fetchone()
if old_email:
errs.append("Email already exists.")
else:
sql_query = "INSERT INTO users (email, password, username) VALUES (%s, %s, %s) RETURNING userid;"
sql_data = (email, hashed_pw, username)
cur.execute(sql_query, sql_data)
userid = cur.fetchone()[0]
# sql_query = "INSERT INTO email_confirmation (userid, token) VALUES (%s, %s);"
# sql_data = (userid, token)
# cur.execute( sql_query, sql_data )
conn.commit()
cur.close()
tools.setCookie(email, username, userid)
except db.psycopg2.DatabaseError, e:
# if I have a connection
print e
if conn:
conn.rollback()
return redirect("/welcome/")
