def post(self): """ Args: Username Password """ uname = self.get_argument('username') passwd = self.get_argument('password') session_id = self.get_secure_cookie(COOKIE_NAME) if session_id: if self.db.query(Session).get(session_id): self.set_status(200) else: self.write("Invalid session, please log in again.") self.clear_cookie(COOKIE_NAME) self.set_status(401) return u = User.getByName(self.db, uname) if not u: self.set_status(410) self.write("User does not exist") return if not u.auth(passwd): self.set_status(401) self.write("Invalid password") return session = Session(u) if not self.get_secure_cookie(COOKIE_NAME): self.set_secure_cookie(COOKIE_NAME, session.id) self.db.add(session) self.db.commit() self.set_status(201) return self.set_status(200)
def post(self): """ Args: username password """ if self.db.query(User).filter(User.name == self.get_argument('username')).all(): self.write("User exists") self.set_status(200) return u = User(self.get_argument('username')) u.setPass(self.get_argument('password')) self.db.add(u) session = Session(u) if not self.get_secure_cookie(COOKIE_NAME): self.set_secure_cookie(COOKIE_NAME, session.id) self.db.add(session) self.db.commit() self.write("OK") self.set_status(201)