def post(self): email = self.session['email'] = self.request.get('email', '').lower() password = self.request.get('password') # Nothing to log in with if not email or not password: return self.redirect('/signup', 'email and password required') # Password matches the user we found with this email user = UserProfile.get_by_email(email) if user: return self.redirect('/signup', 'user already exists') user = UserProfile.create(email, password) self.session['user_id'] = user.id # Failed to login self.redirect('/')
def post(self): email = self.session['email'] = self.request.get('email', '').lower() password = self.request.get('password') if self.user: return self.redirect('/user', 'already logged in') # Nothing to log in with if not email or not password: return self.redirect('/login', 'missing password') # Password matches the user we found with this email user = UserProfile.get_by_email(email) if user and user.check_password(password): self.session['user_id'] = user.id return self.redirect('/') # Failed to login self.redirect('/login', 'user not found')