def admin_portal(): if 'admin' in session and 'password' in session: admin = session['admin'] password = session['password'] else: admin = request.form.get('admin') password = request.form.get('password') if check_auth(admin, password): session['admin'] = admin session['password'] = password return redirect(url_for('admin_home', year=date.today().year)) else: session['error'] = 'INVALID CREDENTIALS' return redirect(url_for('admin_login'))
def login(): auth = request.get_header('Authorization') try: username, password = parse_auth(auth) except: response.content_type = 'application/json' response.status = 401 resp = {'error': 'Empty credentials'} return dumps(resp) if check_auth(username, password): response.content_type = 'application/json' response.status = 200 return dumps({'token': user_token(username)}) response.content_type = 'application/json' response.status = 401 response.headers['WWW-Authenticate'] = 'Basic realm="Login Required"' resp = {'message': 'Authentication failed'} return dumps(resp)
def logged_in(): logged = False if 'admin' in session and 'password' in session: logged = check_auth(session['admin'], session['password']) return logged