def login():
error = None
if request.method == 'POST': #button pressed?
nam=request.form['username']
pw=request.form['password']
#check if username is in our database
if runSelectws(['user.uid'],'user.uid="%s"'%nam.lower()) == []:#run a search here to see if it's in the users.uid table
error = 'Invalid username'
elif runSelectws(['user.uid'],'user.uid="%s" and user.pw="%s"'%(nam.lower(),pw)) ==[]:#run a search here to see if it's in teh users.pw table
error = 'Invalid password'
else:
session['logged_in'] = True
flash('Welcome %s'%nam)
#return redirect(url_for('welcome_screen'))
return render_template('welcome_screen.html',error=error)
return render_template('login.html', error=error)
def uidCheck(nameIn):
# takes 'nameIn', verifies that is at least 10 characters long
# contains no characters () and isn't already in use (all lower case)
# returns a descriptive error or null
goodString = string.ascii_letters + "[email protected]_+"
res = stringCheck(nameIn, goodString)
if res != []:
return """The following characters are not allowed: %s""" % res
elif len(nameIn) < 3:
return "At least 3 characters"
elif runSelectws(["user.uid"], 'user.uid="%s"' % nameIn) != []:
return "Username already in use"
else:
return ""
