def index():
login = LoginForm()
#Check if get method
if request.method == 'GET':
return render_template('template_index.html',form=login,isLogged=False)
else:
#check if form data is valid
if login.validate_on_submit():
#Check id correct useranme and password
user = Users.query.filter_by(email=login.email.data)
print(user)
if user.count(user.count() == 1) and (check_password_hash(user[0].passw,login.passw.data)):
print(user[0])
session['user_id'] = user[0].id
session['isLogged'] = True
#tapa 1
friends = Friends.query.filter_by(user_id=user[0].id)
print(friends)
return render_template('template_user.html',isLogged=True,friends=friends)
else:
flash('Wrong email or password')
return render_template('template_index.html',form=login,isLogged=False)
#form data was not valid
else:
flash('Give proper information to email and password fields!')
return render_template('template_index.html',form=login,isLogged=False)
def index(): #instanssi login-formista
login = LoginForm()
#Check if get method
if request.method == 'GET':
return render_template('template_index.html',form=login,isLogged=False)
else:
#check if form data is valid
if login.validate_on_submit(): #zekkaa onko validatoreilla tarkistettu data validia
#Check id correct username and password
user = Users.query.filter_by(email=login.email.data)
#muodostaa: Select email passw From User Where email="?" And Passw="?"
#all()=[], first()=object
if (user.count() == 1) and (check_password_hash(user[0].passw,login.passw.data)):
print(user[0])
session['user_id'] = user[0].id
session['isLogged'] = True
#tapa 1
friends = Friends.query.filter_by(user_id=user[0].id)
print(friends)
return render_template('template_user.html',isLogged=True, friends=friends)
else:
flash('Wrong email or password')
#print(login.email.data) #pythonilla ei tarvi requestista hakea dataa, vaan suoraan formilta
#print(login.passw.data)
return render_template('template_user.html',form=login, isLogged=False) # renderöidään template_user.html
#form data was not valid
else:
flash('Give proper information to email and password fields!')
return render_template('template_index.html',form=login,isLogged=False)
def index():
login = LoginForm()
if request.method == 'GET':
return render_template('template_index.html',form=login,isLogged=False)
else:
#Check if form data is valid
if login.validate_on_submit():
#Check if correct username and password
#user = Users.query.filter_by(email=login.email.data).filter_by(passw=login.passw.data) #Tämä versio ei sisällä salauksen purkua
user = Users.query.filter_by(email=login.email.data)
print(user)
#if user.count() == 1 #Tämä versio ei sisällä passw salauksen purkua
if (user.count() == 1 and (check_password_hash(user[0].passw,login.passw.data))):
print(user[0])
session['user_id'] = user[0].id
session['isLogged'] = True
#tapa 1
friends = Friends.query.filter_by(user_id=user[0].id)
print(friends)
return render_template('template_user.html',isLogged=True,friends=friends)
else:
flash('Wrong email or password')
return render_template('template_index.html',form=login,isLogged=False)
#return redirect('/') toimisi myös
#form data was not valid
else:
flash('Give proper information to email and password fields')
return render_template('template_index.html',form=login,isLogged=False)
def index():
if login.current_user.is_authenticated():
return login.redirect('/dashboard')
# Create the forms
sign_up_form = forms.SignUpForm()
sign_in_form = forms.SignInForm()
if flask.request.method == 'POST' and sign_up_form.validate_on_submit():
new_user = models.User(
first_name=sign_up_form.first_name.data,
last_name=sign_up_form.last_name.data,
email=sign_up_form.email.data,
password=bcrypt.generate_password_hash(sign_up_form.password.data),
)
db.session.add(new_user)
db.session.commit()
return flask.redirect(flask.url_for('dashboard'))
if flask.request.method == 'POST' and sign_in_form.validate_on_submit():
user = models.User.query.filter(
models.User.email == sign_in_form.user_email.data).first()
login.login_user(user)
if (bcrypt.check_password_hash(user.password,
sign_in_form.user_password.data)):
return flask.redirect(flask.url_for('dashboard'))
return flask.render_template('home.epy', sign_up_form=sign_up_form,
sign_in_form=sign_in_form, user=login.current_user)
def index():
login = LoginForm()#login objekti
if request.method == 'GET':#29.1.2016 lisätty alla oleva
return render_template('template_index.html',form=login,isLogged=False)
else:
#check if form data is valid
if login.validate_on_submit():#tsekkaa onko formit valideja
#3.2.2016 Check if correct username or password
#user = Users.query.filter_by(email=login.email.data).filter_by(passw=login.passw.data)
#yllä oleva luo SQL-lauseen: Select email passw From User Where email="?" And passw="?"
#4.2.2016 passw on kryptattu
# Check if correct username
user = Users.query.filter_by(email=login.email.data)
print(user)
#if user.count() == 1:#3.2.2016 jos palautetun taulukon koko on yksi
#4.2.2016: user[0].passw = kryptattu salasana
if (user.count() == 1) and (check_password_hash(user[0].passw,login.passw.data)):
print(user[0])
session['user_id'] = user[0].id#tallennetaan käyttäjän ID
session['isLogged'] = True
print(session['user_id'])
#Haetaan ystävät
#tapa 1 listata ystävät
friends = Friends.query.filter_by(user_id =user[0].id)
print(friends)
return render_template('template_user.html',isLogged=True,friends=friends)
else:
flash('Wrong email or password')
return render_template('template_index.html',form=login,isLogged=False)
#form data was not valid
else:
flash('Give proper information to email and password fields!')#näyttö toteutettu base.html:ssä (kalvo s.56)
return render_template('template_index.html',form=login,isLogged=False)
def index(page=1):
login = LoginForm()
#Check method
if request.method == 'GET':
if not('isLogged' in session) or (session['isLogged'] == False):
return render_template('template_index.html', form = login, isLogged = False)
else:
return redirect ("/app/users")
else:
#Check if form data is valid
if login.validate_on_submit():
# Check if correct username
user = User.query.filter_by(email = login.email.data)
if (user.count() == 1) and (check_password_hash(user[0].password, login.passw.data)):
session['username'] = login.email.data
session['user_id'] = user[0].id
session['isLogged'] = True
#tapa 1
friends = Friends.query.filter_by(user_id=user[0].id).paginate(page,10,False)
return render_template('template_user.html', isLogged=True, friends=friends)
#return redirect ("/users")
else:
flash('Wrong username or password given!')
return render_template('template_index.html', form = login, isLogged = False)
#Form data was not valid
else:
flash('Give proper information to email and password fields!')
return render_template('template_index.html', form = login, isLogged = False)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash(
Markup(
'<div class="preNote">Incorrect email or password!</div><div class="noteSuf">You have entered the wrong email or password.</div>'
), 'error')
else:
if check_password_hash(user.password, form.password.data):
if models.User.confirmed:
login_user(user)
flash(
Markup(
'<div class="preNote">You\'ve been logged in!</div><div class="noteSuf">You have been successfully logged into your account.</div>'
), 'success')
return redirect(url_for('feed'))
else:
flash(
Markup(
'<div class="preNote">Your email hasn\'t been verified. </div><div class="noteSuf">Your account hasn\'t been acivated, check your email inbox and junk folder and click the link.</div>'
), 'error')
else:
flash(
Markup(
'<div class="preNote">Your email hasn\'t been verified. </div><div class="noteSuf">Your account hasn\'t been acivated, check your email inbox and junk folder and click the link.</div>'
), 'error')
return render_template('login.html', form=form)
def login():
staff = rod.model.db.session.query(rod.model.staff.Staff).filter_by(
email=flask.request.json['email']
).first()
if staff is None:
# User doesn't exist
# Instantiate a fake user to cycle through the whole authentication process
staff = rod.model.staff.Staff()
staff.password = flask.ext.bcrypt.generate_password_hash('any pass') # Whatever
# Authentication will fail even if the typed password matches the one above,
# due to staff check
bcrypt = flask.ext.bcrypt.Bcrypt(flask.current_app)
is_password_correct = bcrypt.check_password_hash(
staff.password,
flask.request.json['password']
)
if staff and is_password_correct:
flask.ext.login.login_user(staff)
staff_schema = rod.model.schemas.StaffSchema()
return flask.jsonify(staff_schema.dump(staff).data)
raise rod.APIError('Authorization failed', status_code=401)
def delete_user(username, password):
"""Delete a user. The password must be provided."""
user = User.get(User.username == username)
if check_password_hash(user.password, password):
user.delete_instance()
else:
raise PermissionError("Invalid password.")
def post(self):
username = request.values.get("username", None)
password = request.values.get("password", None)
#VALIDATE FORM LOGIN
errors = []
if username is None or not username:
errors.append(dict(field="username",
message="Input Empty"))
if password is None or not password:
errors.append(dict(field="password",
message="Input Empty"))
if errors:
return json_respon(code=400,
msg="Input Empty",
errors=errors)
#Check Existing User
user = User.query.filter_by(username=username).first()
if not user:
return json_respon(code=400,
msg="Unknown Username")
#Check Hashed Password
if not check_password_hash(user.password, password):
return json_respon(code=400,
msg = "Password Wrong.")
#Create Session User
login_user(user)
return json_respon(msg="You're logged in")
def test_user(self):
admin = User('admin', 'supersafepassword')
assert admin.username == 'admin'
assert check_password_hash(admin.password, 'supersafepassword')
db.session.add(admin)
db.session.commit()
def change_user_password(pk_id, old_password, new_password):
"""Edit a user. Old password is required."""
user = User.get(User.id == pk_id)
if check_password_hash(user.password, old_password):
user.update(password=generate_password_hash(new_password)).execute()
else:
raise PermissionError("Invalid password.")
def change_user_password(pk_id, old_password, new_password):
"""Edit a user. Old password is required."""
user = User.get(User.id == pk_id)
if check_password_hash(user.password, old_password):
user.update(password=generate_password_hash(new_password)).execute()
else:
raise PermissionError("Invalid password.")
def is_valid_email_login(email, password):
uinfo = list(r.table("users").filter({"email": email}).run(rdb.conn))
if len(uinfo) != 1:
return False
else:
if check_password_hash(uinfo[0]['hash'], password):
return True
else:
return False
def is_valid_login(username, password):
uinfo = mongo.db.users.find_one({'username': username})
if uinfo:
if check_password_hash(uinfo['hash'], password):
return True
else:
return False
else:
return False
def is_valid_email_login(email, password):
uinfo = mongo.db.users.find_one({'email': email})
if uinfo:
if check_password_hash(uinfo['hash'], password):
return True
else:
return False
else:
return False
def invalid_login(form, field):
try:
user = models.User.get(models.User.email == form.email.data)
if check_password_hash(user.password, form.password.data) == False:
raise ValidationError('Email or password does not match')
except models.DoesNotExist:
raise ValidationError('Email or password does not match.')
def invalid_login(form, field):
try:
user = models.User.get(models.User.email == form.email.data)
if check_password_hash(user.password, form.password.data) == False:
raise ValidationError('Email or password does not match')
except models.DoesNotExist:
raise ValidationError('Email or password does not match.')
def is_valid_email_login(email, password):
uinfo = list(r.table("users").filter({"email": email}).run(rdb.conn))
if len(uinfo) != 1:
return False
else:
if check_password_hash(uinfo[0]['hash'], password):
return True
else:
return False
def is_valid_login(username, password):
uinfo = list(
r.table("users").get_all(username, index="username").run(rdb.conn))
if len(uinfo) != 1:
return False
else:
if check_password_hash(uinfo[0]['hash'], password):
return True
else:
return False
def check_auth(email, password):
"""Check if a username/password combination is valid.
"""
print email
print password
try:
user = models.User.get(models.User.email == email)
except models.DoesNotExist:
return False
return check_password_hash(user.password,password)
def login():
if request.method == 'POST':
user = AuthUser.get(request.form['username'])
if (user and check_password_hash(user.password, request.form['password'])):
login_user(user)
return redirect(url_for('welcome'))
else:
flash('Username or password incorrect')
return redirect(url_for('login'))
return render_template('login.html')
def is_valid_login(username, password):
uinfo = list(r.table("users").get_all(
username, index="username").run(rdb.conn))
if len(uinfo) != 1:
return False
else:
if check_password_hash(uinfo[0]['hash'], password):
return True
else:
return False
def login_android():
if request.method == "POST":
user = db.session.query(User).filter(User.email==request.form.get('email'), User.general!=0) # User.query.filter_by(email=request.form.get('email'), general=1)
if user.count() == 0:
return jsonify({'validation': "You haven't registered with us yet or registered with facebook"})
else:
if check_password_hash(user.one().password, request.form.get('password')):
return jsonify({'validation': "You have successfully logged in"})
else:
return jsonify({'validation': "Your email or password doesn't match"})
def delete_user(username, password):
"""Delete a user. The password must be provided."""
user = User.get(User.username == username)
if check_password_hash(
user.password,
password
):
user.delete_instance()
else:
raise PermissionError("Invalid password.")
def login():
post = request.get_json()
user = User.query.filter_by(email=post.get('email')).first()
if user and check_password_hash(user.password, post.get('password')):
status = True
login_user(user)
return json.dumps({"result":status})
else:
status = False
return json.dumps({"result":status})
def login():
form = forms.SignUpInForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You're now logged in!")
else:
flash("No user with that email/password combo")
except models.DoesNotExist:
flash("No user with that email/password combo")
return render_template('register.html', form=form)
def login():
username = request.json.get('username')
password = request.json.get('password')
try:
user = models.User.get(models.User.username == username)
except models.DoesNotExist:
return jsonify({ 'message': 'User does not exist' }), 400
else:
if check_password_hash(user.password, password):
login_user(user)
token = g.user.generate_auth_token()
return jsonify({ 'token': token.decode('ascii') }), 200
else:
return jsonify({ 'message': 'Incorrect password' }), 400
def validate(self):
rv = Form.validate(self)
if not rv:
return False
user = User.query.filter_by(username=self.username.data).first()
if user is None or not user:
self.username.errors.append('Unknown username')
return False
if not check_password_hash(user.password, self.password.data):
self.password.errors.append('Invalid password')
return False
self.user = user
return True
def login():
email = request.json.get('email')
password = request.json.get('password')
try:
user = models.AppUser.get(fn.Lower(models.AppUser.email) == email.lower())
except models.DoesNotExist:
return jsonify({ 'message': 'user does not exist' }), 400
if password is not None:
if check_password_hash(user.password, password.encode('utf-8')):
token = user.generate_auth_token()
return jsonify({ 'token': token.decode('ascii'),
'user': user.serialized })
else:
return jsonify({ 'message': 'incorrect password' }), 400
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("Welcome, you're logged in!", "success")
return redirect(url_for('index'))
else:
flash("The login was invalid.", "error")
except models.DoesNotExist:
flash("The login was invalid.", "error")
return render_template('login.html', form=form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password doesn't match:", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
return redirect(url_for('index'))
else:
flash("Your email or password doesn't match:", "error")
return render_template('login.html', form=form)
def login():
print request.json
username = request.json.get("username")
password = request.json.get("password")
user = User.query.filter_by(username = username).first()
if user is None or not check_password_hash(user.password, password):
return return_response(400, "Wrong input")
#return jsonify({'error':'wronginput'}), 400
# Return token key to user
return return_response(200, "OK", {'token':user.generate_token_key()})
def validate(self):
rv = Form.validate(self)
if not rv:
return False
user = User.query.filter_by(username=self.username.data).first()
if user is None or not user:
self.username.errors.append('Unknown username')
return False
if not check_password_hash(user.password, self.password.data):
self.password.errors.append('Invalid password')
return False
self.user = user
return True
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Email or Password dosnt match!", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You have been logged in to Lame Tweet", "Success")
return redirect(url_for('index'))
else:
flash("Email or Password dosnt match!", "error")
return render_template('login.html', form=form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Email or Password dosnt match!", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You have been logged in to DfB Explorer", "Success")
return redirect(url_for('dfbAuth'))
else:
flash("Email or Password dosnt match!", "error")
return render_template('login.html', form=form)
def authenticate(form):
if form.validate_on_submit():
try:
user = session.query(User).filter(User.email == form.email.data).first()
except :# models.DoesNotExist:
flash("Your email or password does not match !", "error")
else :
if check_password_hash(user.password,form.password.data):
login_user(user, remember = form.remember.data)
flash("You've been logged in", "success")
return redirect(url_for('index'))
else :
flash("Your email or password does not match !", "error")
return render_template('login.html',form = form)
return render_template('login.html',form = form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password does not match.", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash('Welcome {}! You are now logged in.'.format(user.email.split('@')[0]), 'success')
return redirect(url_for('index'))
else:
flash("Your email or password does not match.", "error")
return render_template('login.html', form=form)
def login():
"""Allows the user to log in."""
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email does not exist :{")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("Welcome to your Journal!", "success")
return redirect(url_for('index'))
return render_template('login.html', form=form)
def login():
form = LoginForm()
if form.validate_on_submit():
user = db.session.query(User).filter(User.email==form.email.data, User.general!=0) # User.query.filter_by(email=form.email.data, general=1) #
if user.count() == 0:
flash("You haven't registered with us yet or registered with facebook")
else:
if check_password_hash(user.one().password, form.password.data):
login_user(user.one())
flash("You been logged in", "success")
return redirect(url_for('personal'))
else:
flash("Your email or password doesn't match", "error")
return render_template('duniyalogin.html', form=form)
def root():
login_form = LoginForm()
if request.method == 'GET':
return render_template('index.html',form=login_form)
if login_form.validate_on_submit():
user = User.query.filter_by(username=login_form.email.data)
if user.count() == 1 and check_password_hash(user[0].password,login_form.password.data):
login_user(user.one())
return redirect('/data')
else:
flash('Invalid username or password')
return redirect('/')
else:
flash('Give proper email address')
return redirect('/')
def login():
form = forms.SignUpInForm()
if form.validate_on_submit():
try:
user = models.User.get(
models.User.email == form.email.data
)
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You're now logged in!")
else:
flash("No user with that email/password combo")
except models.DoesNotExist:
flash("No user with that email/password combo")
return render_template('register.html', form=form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash('Your email or password does not match!', 'error')
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash('You have been logged in', 'success')
return redirect(url_for('index'))
else:
flash('Your email or password does not match!', 'error')
return render_template('login.html', form=form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password is not correct", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("User successfully logged in", "success")
return redirect(url_for('notes'))
else:
flash("Your email or password is not correct", "error")
return render_template('login.html', form=form)
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password doesn't match!", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You've been logged in!", "success")
return redirect(url_for('index'))
else:
flash("Your email or password doesn't match!", "error")
return render_template('login.html', form=form)
def index():
login_form = forms.LoginForm()
if login_form.validate_on_submit():
try:
user = models.User.get(models.User.email == login_form.email.data)
except models.DoesNotExist:
flash("Your email or password doesn't match.", 'error')
else:
if check_password_hash(user.password, login_form.password.data):
login_user(user)
flash("You've been successfully logged in!", 'success')
return redirect(url_for('index'))
else:
flash("Your email or password doesn't match.", 'error')
return render_template('index.html', form=login_form)
def signin():
if session.has_key("user_id"):
return redirect(url_for("overview"))
if "id" not in request.form or "password" not in request.form or request.method != "POST":
return render_template("signin.html")
userData = model.User.query.filter(model.User.ID == request.form["id"]).first()
if not userData:
return render_template("signin.html")
elif not check_password_hash(userData.Password, request.form["password"]):
return render_template("signin.html")
else:
login_user(userData)
return(redirect(url_for("overview")))
def login(**kwargs):
"""
authenticate user email/password and on success create user session.
Returns simple boolean variable.
"""
username = kwargs.get("username", None)
password = kwargs.get("password", None)
remember = kwargs.get("remember", True)
success = False
u = Users.load_user(username)
if u is not None:
from flask.ext.bcrypt import check_password_hash
if check_password_hash(u.password, password):
Users.start_session(username)
success = True
return success
def login():
loginForm = forms.LoginForm()
if loginForm.validate_on_submit():
user = User.query.filter_by(email=loginForm.email.data).first()
if not user:
flash("Your email or password doesn't match!", "alert-danger")
else:
if check_password_hash(user.password, loginForm.password.data):
login_user(user)
flash("You've been logged in!", "alert-success")
return redirect(url_for('event.explore'))
else:
flash("Your email or password doesn't match!", "alert-error")
return render_template('landing/index.html',
registerForm=forms.RegisterForm(),
loginForm=loginForm)
def login():
# Login form in login view
login_form = LoginForm()
if not flask_login.current_user.is_authenticated():
if login_form.validate_on_submit():
username = login_form.username.data
try:
current_user = models.User.get(
models.User.username == username)
except models.DoesNotExist:
flash("Your username or password doesn't match!", "error")
return redirect(url_for('login'))
# TODO: Check this logic in the next try catch statement maybe no need it.
if current_user.active:
try:
log_user = models.User.get(
models.User.username == username)
except models.DoesNotExist:
flash("Your username or password doesn't match!", "error")
else:
if check_password_hash(log_user.password,
login_form.password.data):
login_user(log_user)
flash("You've been logged in!", "success")
_next = request.args.get('next')
if _next:
return redirect(_next)
else:
return redirect(url_for('dashboard'))
else:
flash("Your username or password doesn't match!",
"error")
else:
flash("You account is not active yet, please check you email.",
"no-active")
return render_template('user/login.html',
section="user",
title="Login",
log_form=login_form,
register_form=RegisterForm(),
forgot_form=ForgotCredentialReset(),
resend_from=ResendActivationEmailForm())
# TODO: Find why this has been printing twice!
flash("You are logged in already.", "success")
return redirect(url_for('dashboard'))
def login():
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password doesn't match!", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user) #Creating a session on the users browser
# Using a cookie.
# Can store sessions in the database.
flash("You've been logged in!", "success")
return redirect(url_for('index'))
else:
flash("Your email or password doesn't match!", "error")
return render_template("login.html", form=form)
def login():
this_route = url_for('.login')
app.logger.info("Someone visited the Login page " + this_route)
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.email == form.email.data)
except models.DoesNotExist:
flash("Your email or password doesn't match!", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
flash("You've been logged in!", "success")
return redirect(url_for('profile'))
else:
flash("Your email or password doesn't match!", "error")
return render_template('login.html', form=form)
def login():
if current_user.is_authenticated:
logout_user()
flash("You've been logged out.", "success")
form = forms.LoginForm()
if form.validate_on_submit():
try:
user = models.User.get(models.User.username == form.username.data)
except models.DoesNotExist:
flash("Your username and password do not match.", "error")
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
return redirect(url_for('index'))
else:
flash("Your username and password do not match.", "error")
return render_template('login.html', form=form)
def test_create_new_user_from_email(self):
first_name = 'Taylor'
last_name = 'Swift'
email = '*****@*****.**'
password = '******'
user = m.User.create_new_user_from_email(first_name, last_name, email,
password)
user_query = m.User.objects(email=email)
self.assertEquals(user_query.count(), 1)
same_user = user_query.first()
self.assertEquals(user, same_user)
self.assertEquals(user.first_name, first_name)
self.assertEquals(user.last_name, last_name)
self.assertTrue(bcrypt.check_password_hash(user.password, password))
def post(self):
data = request.get_json()
user = User.query.filter_by(email=data['email']).first()
if user is None or\
not check_password_hash(user.password, data['password']):
raise Unauthorized
current_time = datetime.datetime.utcnow()
expiration_date = current_time + datetime.timedelta(weeks=6)
token = Token(user, binascii.hexlify(os.urandom(127)), expiration_date)
db.session.add(token)
db.session.commit()
return token
def authenticate(form):
if form.validate_on_submit():
try:
session = DBSession()
user = session.query(User).filter(
User.email == formLogin.email.data).first()
except: # models.DoesNotExist:
flash("Your email or password does not match !", "error")
else:
if user is not None:
if check_password_hash(user.password, form.password.data):
login_user(user, remember=form.remember.data)
flash("You've been logged in", "success")
return render_template('index')
else:
flash("Your email or password does not match !", "error")
return render_template('login.html', formLogin=form)
return render_template('login.html', formLogin=form)
def login():
form = forms.SignUpInForm()
email = request.form.get('email')
password = request.form.get('password')
try:
user = models.User.get(
models.User.email == email
)
if check_password_hash(user.password, password):
login_user(user)
flash("You're now logged in!")
return redirect(url_for('index'))
else:
flash("No user with that email/password combo")
except models.DoesNotExist:
flash("No user with that email/password combo")
return render_template('login.html', form=form)
def auth_user(email, password):
"""Returns the authenticated user or None."""
user = User.objects(email=email)
if not user:
return None
if user.count() > 1:
logging.error('Multiple email addressed matched: %s' % email)
return None
user = user.first()
# TODO(sandy): Provide more helpful errors for users signed up with fb
if (not user.password
or not bcrypt.check_password_hash(user.password, password)):
return None
return user
def login():
"""Route to allow users to log on using data from POST request else render the login form"""
form = LoginForm()
if form.validate_on_submit():
try:
user = User.get(User.email == form.email.data)
except DoesNotExist:
flash('Your email or password does not exist.', 'error')
else:
if check_password_hash(user.password, form.password.data):
login_user(user)
try:
return redirect(url_for('qa_bp.view', lessonid=LessonStudent.get(
LessonStudent.student_id == user.user_id).lesson_id.id))
except:
return redirect(url_for('auth_bp.profile'))
else:
flash('Your email or password does not exist.', 'error')
return render_template('auth/login.html', form=form)
