def on_post(self, req, resp): phone = req.parsed['phone'] password = req.parsed['password']+config['secure']['salt_password'] try: user = ( User .select(User.id) .where(User.phone == phone) .where( User.password == hashlib.sha256 (password.encode()) .hexdigest() ) .get() ) except Exception: raise falcon.HTTPUnauthorized() try: resp.set_cookie( 'user_session', make_session( credential=phone, user_data=req.host+req.user_agent, user_id=user.id ), path='/' ) except Exception: raise falcon.HTTPUnauthorized()
def on_post(self, req, resp): login = req.parsed['login'], password = req.parsed['password'] try: worker = Session.query(Worker)\ .filter( Worker.login == login ).first() except Exception: raise falcon.HTTPNotFound() if not worker.is_password_valid(password): raise falcon.HTTPForbidden() if worker.type != WorkerType.INSPECTOR: raise falcon.HTTPForbidden() try: resp.set_cookie('user_session', make_session(credential=login[0], user_data=req.host + req.user_agent, user_id=worker.id), path='/') except Exception: raise falcon.HTTPUnauthorized()
def on_post(self, req, resp): login = req.parsed['login'] password = req.parsed['password'] + config['secure']['salt_password'] user = (User.query.join(Manager).filter(Manager.login == login).filter( Manager.password == hashlib.sha256( password.encode()).hexdigest()).one_or_none()) if not user: raise falcon.HTTPUnauthorized() try: resp.set_cookie('user_session', make_session(credential=login, user_data=req.host + req.user_agent, user_id=user.id), path='/') except Exception: raise falcon.HTTPUnauthorized()
def on_post(self, req, resp): ean13 = req.parsed['ean13'] password = req.parsed['password'] worker = session.query(Worker)\ .filter(Worker.ean13 == ean13)\ .filter(Worker.password == password) if not worker.scalar(): raise falcon.HTTPForbidden() try: # import pdb; pdb.set_trace() resp.set_cookie('user_session', make_session(credential=str(ean13), user_data=req.host + req.user_agent, user_id=worker[0].id), path='/') except Exception: raise falcon.HTTPUnauthorized()
def on_post(self, req, resp): user = User(**req.parsed) password = req.parsed['password']+config['secure']['salt_password'] user.password = hashlib.sha256(password.encode()).hexdigest() try: user.save() except Exception: raise falcon.HTTPUnprocessableEntity() try: resp.set_cookie( 'user_session', make_session( credential=user.phone, user_data=req.host+req.user_agent, user_id=user.id ), path='/' ) except Exception: raise falcon.HTTPUnauthorized()
def on_post(self, req, resp): email = req.parsed['email'] password = req.parsed['password'] + config['secure']['salt_password'] user_id = ( session().query(User.id).filter(User.email == email).filter( User.password == hashlib.sha256( password.encode()).hexdigest()).filter( User.is_active == True) # nopep8 .one_or_none()) if not user_id: raise falcon.HTTPError(falcon.HTTP_UNAUTHORIZED) try: resp.set_cookie( 'user_session', make_session(credential=email, user_data=req.host + req.user_agent, user_id=user_id[0])) except Exception: raise falcon.HTTPError(falcon.HTTP_UNAUTHORIZED)